flaviar.com/
301 Moved Permanently 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 02 Sep 2022 19:36:43 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Fri, 02 Sep 2022 20:36:43 GMT
Location: https://flaviar.com/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Le9YfxRTd%2BSrO6IbZNhTrGTCbgtgSVGJhGEE400rC1ttuiE2HUI6ocVIazAdEA2sGj4UhQCMbnTHow9rzzz4dO9tt0KFS9H%2BQUy8giOq7CGq2eEFovbzgfroHcUj"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7448b237baf8b506-OSL
alt-svc: h2=":443"; ma=60
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash b593eb39329cfe060d55be5e4a5405e2
78e46c1028e9f94f8569303ad2d90d7df13a059a
08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 02 Sep 2022 18:41:54 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: _CSBRslFXUSdoHeIN_ZjNMkZLJ5c3ZofCPdPesCu0lWUTAHQ2_NtVw==
Age: 3289
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash bcdebf7a2bad5db595e8a0c1abb2ddcb
249dda2fa5e37b8a8f3a8c797193bf0874b6eedc
9b43ec48b16f96449208a0094c4d660806a2a2d344b5862dbff4c393bf3f9f9f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9B43EC48B16F96449208A0094C4D660806A2A2D344B5862DBFF4C393BF3F9F9F"
Last-Modified: Thu, 01 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21262
Expires: Sat, 03 Sep 2022 01:31:05 GMT
Date: Fri, 02 Sep 2022 19:36:43 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Fri, 02 Sep 2022 01:15:17 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: IOpR3zSyp3pmDzROZDsD9uG7fAGCuIbDdPkKTokF58neBh7MyBC04w==
age: 66086
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 02 Sep 2022 19:36:43 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Fri, 02 Sep 2022 18:38:16 GMT
Expires: Fri, 02 Sep 2022 19:26:52 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 2gTSDav4GKNUCKJ0nWKnEcpT4XVoji1VsYIRDoIs4vbSjOm9gMmTRw==
Age: 3508
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 9b4e21714922b9aaa5c0215bbc637b8b
0066ad765c28f770bec2291d87bcee9147a8f7b9
6e5d027db3e6a73e2afad5df8fde36b33706a8bc9787a8667240f6aa92cb506f
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 02 Sep 2022 19:36:44 GMT
Last-Modified: Fri, 02 Sep 2022 19:33:17 GMT
Server: ECS (dcb/7F7F)
X-Cache: Miss from cloudfront
Via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Esid7D8CbIGcwwGkYh-47Fz4TsfCwjmElV6WNKjFXsUld-9whv1RNg==
Age: 207
widget.trustpilot.com/bootstrap/v5/tp.widget.bootstrap.min.js
200 OK 6.1 kB URL HTTP/2 widget.trustpilot.com/bootstrap/v5/tp.widget.bootstrap.min.js
IP
File type Unicode text, UTF-8 (with BOM) text, with very long lines (19239)
Hash 5add60196e5f96a414fb4b9586764e5d
633f471b3c2fcedeef9cad90cb5bf56f5fe55588
5370f4ba91dda790c7cae92817b812fcbd1ab367cbb4862f5669960ae4e2c9e0
GET /bootstrap/v5/tp.widget.bootstrap.min.js HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/x-javascript
content-length: 6124
last-modified: Mon, 30 May 2022 14:38:02 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
date: Fri, 02 Sep 2022 01:35:55 GMT
cache-control: max-age=86400
etag: "5add60196e5f96a414fb4b9586764e5d"
x-cache: Hit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: cgmfjm9w_ELDQNa8kiy9plJTrgFYSeOTAmDfGQKU4W87pHYghpjYng==
age: 64850
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 9b4e21714922b9aaa5c0215bbc637b8b
0066ad765c28f770bec2291d87bcee9147a8f7b9
6e5d027db3e6a73e2afad5df8fde36b33706a8bc9787a8667240f6aa92cb506f
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=162703
Date: Fri, 02 Sep 2022 19:36:44 GMT
Etag: "631233db-1d7"
Expires: Sun, 04 Sep 2022 16:48:27 GMT
Last-Modified: Fri, 02 Sep 2022 16:48:27 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: LmJHfi7LE5wxGFrdtDvUZYNGZqFqAPEPVWAOAgzKhEffM52fJ5Q1qA==
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 9b4e21714922b9aaa5c0215bbc637b8b
0066ad765c28f770bec2291d87bcee9147a8f7b9
6e5d027db3e6a73e2afad5df8fde36b33706a8bc9787a8667240f6aa92cb506f
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 02 Sep 2022 19:36:44 GMT
Last-Modified: Fri, 02 Sep 2022 19:06:08 GMT
Server: ECS (dcb/7F60)
X-Cache: Miss from cloudfront
Via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ocMvTTM89umFWP2QsxidMPrS0dpsQYG3a0784yVKUte6bpzhGresoA==
Age: 1836
ocsp.digicert.com/
200 OK 471 B IP
Hash 21daf45cdda2eb462873226bb5c1f0fb
4d4621bbf1461f35f7e536c1dbd9de71978ffa23
8164c742d013bdc2836cac1167acfe482547347ab6a1daefa15475f694dae057
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4863
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 19:36:44 GMT
Last-Modified: Fri, 02 Sep 2022 18:15:41 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 9b4e21714922b9aaa5c0215bbc637b8b
0066ad765c28f770bec2291d87bcee9147a8f7b9
6e5d027db3e6a73e2afad5df8fde36b33706a8bc9787a8667240f6aa92cb506f
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=162703
Date: Fri, 02 Sep 2022 19:36:44 GMT
Etag: "631233db-1d7"
Expires: Sun, 04 Sep 2022 16:48:27 GMT
Last-Modified: Fri, 02 Sep 2022 16:48:27 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Qt6XWzFay36u7QviUCguYm6LqcfLqz-yMBBxzsHEPeREvue51HmuYw==
use.typekit.net/bne0epn.js
200 OK 6.7 kB URL HTTP/2 use.typekit.net/bne0epn.js
IP
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (2258)
Hash 56c323529b45591f153e4f5a72d75c0e
cfada07aa803d4651a773d0e4536e036bcfd134c
2953f691618da33aef7c7b909532b8a918bf95dc02c9d44816c526fd40bed81d
GET /bne0epn.js HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/javascript;charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains;
cache-control: public, max-age=600, stale-while-revalidate=604800
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
content-length: 6730
date: Fri, 02 Sep 2022 19:36:44 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 7040539fecb815b0cc84c15e3e2e99df
761de2d6da86cb1df6bb1fdd85ad71f75a825bb4
b1edf3547f6db4798d46a116924942acc48ad56da1fd61f9951acf93053a6578
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 19:36:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-K4F6SWQ
200 OK 102 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-K4F6SWQ
IP
File type ASCII text, with very long lines (50758)
Size 102 kB (102332 bytes)
Hash 8a1783e953a1115dbbacec172d12b3de
f186fff25958fd63fc84786fd769fa3777442659
de6f362ebb34a2259c02a828331996f4d0463e40ad57ff24fd513b7168b4e964
GET /gtm.js?id=GTM-K4F6SWQ HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 02 Sep 2022 19:36:44 GMT
expires: Fri, 02 Sep 2022 19:36:44 GMT
cache-control: private, max-age=900
last-modified: Fri, 02 Sep 2022 18:47:34 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 102332
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: XAs/YQpfD2TddPG+ZlxMEg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: IoPaAvRiO3d40mR7XaB7+V9S/Mg=
consent.cookiebot.com/uc.js?cbid=d053bff0-f51a-4434-ab3e-b7ec8831e3ed
200 OK 31 kB URL HTTP/2 consent.cookiebot.com/uc.js?cbid=d053bff0-f51a-4434-ab3e-b7ec8831e3ed
IP
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (65499)
Hash bfd5d0da3a9fa6771af0a51a693752ba
89714adfe7ccb0273694a820f1987ea9a64fdac8
25aef9f0356f966fa85489dc0252fc78179bf3900a654f0a2d521a651df1cd4a
GET /uc.js?cbid=d053bff0-f51a-4434-ab3e-b7ec8831e3ed HTTP/1.1
Host: consent.cookiebot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
last-modified: Tue, 23 Aug 2022 07:31:36 GMT
accept-ranges: bytes
etag: "aeea9f60c2b6d81:0"
vary: Accept-Encoding
request-context: appId=cid-v1:89f47f4b-bed0-4db8-956b-d6e6dfac3fef
access-control-expose-headers: Request-Context
content-length: 31207
cache-control: public, max-age=825
expires: Fri, 02 Sep 2022 19:50:30 GMT
date: Fri, 02 Sep 2022 19:36:45 GMT
X-Firefox-Spdy: h2
www.googleoptimize.com/optimize.js?id=GTM-NLP39W9
200 OK 44 kB URL HTTP/2 www.googleoptimize.com/optimize.js?id=GTM-NLP39W9
IP
File type ASCII text, with very long lines (1615)
Hash 559f00505632d450696f93f8e9c19f93
99b6969d9c5bd421039ea2949c4cf54c5421fb9e
a9ad096bc1e9968b54d54667932dadb555853dfbc629cb67ab9b5d05378b038e
GET /optimize.js?id=GTM-NLP39W9 HTTP/1.1
Host: www.googleoptimize.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 02 Sep 2022 19:36:45 GMT
expires: Fri, 02 Sep 2022 19:36:45 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43490
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
consentcdn.cookiebot.com/sdk/bc-v4.min.html
200 OK 392 B URL HTTP/2 consentcdn.cookiebot.com/sdk/bc-v4.min.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (627), with no line terminators
Hash e7268eccad39bd651697fa793a52cc5c
47299cefa2397b0c1d0c5bf232390a5cf1bcc4d3
907e16c84d35556e4ed841a3511915e6d4bb4e9d68cfca178a740e90b4d80e35
GET /sdk/bc-v4.min.html HTTP/1.1
Host: consentcdn.cookiebot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: text/html
etag: "3d08665fa4c7bcf9fa2dcbbc7efe1d0f:1649057029.895163"
last-modified: Mon, 04 Apr 2022 07:23:49 GMT
server: AkamaiNetStorage
x-akamai-transformed: 9 - 0 pmb=mRUM,1
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31175407
expires: Tue, 29 Aug 2023 15:26:52 GMT
date: Fri, 02 Sep 2022 19:36:45 GMT
content-length: 392
server-timing: cdn-cache; desc=HIT, edge; dur=1
X-Firefox-Spdy: h2
consent.cookiebot.com/d053bff0-f51a-4434-ab3e-b7ec8831e3ed/cc.js?renew=false&referer=flaviar.com&dnt=false&init=false&georegions=%5B%7B%22r%22%3A%22US-06%22%2C%22i%22%3A%226b04ee58-2401-4074-bb6b-0969a4c527d9%22%7D%5D
200 OK 156 B URL HTTP/2 consent.cookiebot.com/d053bff0-f51a-4434-ab3e-b7ec8831e3ed/cc.js?renew=false&referer=flaviar.com&dnt=false&init=false&georegions=%5B%7B%22r%22%3A%22US-06%22%2C%22i%22%3A%226b04ee58-2401-4074-bb6b-0969a4c527d9%22%7D%5D
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with CRLF line terminators
Hash 3477de123b1bcca0a96d557218c3c72c
279660604c7c2e9d5be154df57180849efca1e34
9331664c1938651f09a14fb45d0af5fd86a72c2d9aff0bc26193e239ddb38268
GET /d053bff0-f51a-4434-ab3e-b7ec8831e3ed/cc.js?renew=false&referer=flaviar.com&dnt=false&init=false&georegions=%5B%7B%22r%22%3A%22US-06%22%2C%22i%22%3A%226b04ee58-2401-4074-bb6b-0969a4c527d9%22%7D%5D HTTP/1.1
Host: consent.cookiebot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: private, max-age=1200
content-type: application/x-javascript; charset=utf-8
content-encoding: gzip
last-modified: Fri, 02 Sep 2022 19:36:45 GMT
vary: Accept-Encoding
request-context: appId=cid-v1:89f47f4b-bed0-4db8-956b-d6e6dfac3fef
access-control-expose-headers: Request-Context
content-length: 156
date: Fri, 02 Sep 2022 19:36:45 GMT
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 472 B IP
Hash 0d633eb41b3c40fcb835817d18b1fefc
f319bd2763ba5355adecb66a552f1c033b33fc7d
4cecb0c264b138ca33d948ee7f6f200c1e05efe6613d61918931f1e4bed13f35
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 19:36:45 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 01 Sep 2022 14:06:54 GMT
Expires: Thu, 08 Sep 2022 14:06:53 GMT
Etag: "f319bd2763ba5355adecb66a552f1c033b33fc7d"
Cache-Control: max-age=498007,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7448b24159d3b529-OSL
cdn.segmentify.com/06e2e4b6-5e17-4dbf-9574-c462c3d742d7/segmentify.js
200 OK 50 kB URL HTTP/2 cdn.segmentify.com/06e2e4b6-5e17-4dbf-9574-c462c3d742d7/segmentify.js
IP
File type ASCII text, with very long lines (56669)
Hash c5b1e663936f7c199f0dffc07d9ae34d
73dd522b112a447ac833685465de17846c4054fd
2d75f853eba0e469a065b3bb2348b96ea2802e12aa14b4490cff79d292a93513
GET /06e2e4b6-5e17-4dbf-9574-c462c3d742d7/segmentify.js HTTP/1.1
Host: cdn.segmentify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtnWzvMfjLmvrmJgHqaawaaq7b7rgViNvOj0DWZQojs8DPETfLiKbSrZmcOtq3uUhu1l2NbrlKOl0g5u-BHl7PbFrz18ct1
x-goog-generation: 1662123307175226
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 50293
content-encoding: gzip
x-goog-hash: crc32c=K+CC0A==, md5=xbHmY5NvfBmfDf/AfZrjTQ==
x-goog-storage-class: STANDARD
accept-ranges: bytes
vary: Accept-Encoding
content-length: 50293
access-control-allow-origin: *
access-control-expose-headers: Origin, Accept, Content-Type, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token
server: UploadServer
date: Fri, 02 Sep 2022 13:15:55 GMT
expires: Fri, 09 Sep 2022 13:15:55 GMT
cache-control: public, max-age=604800
last-modified: Fri, 02 Sep 2022 12:55:07 GMT
etag: "c5b1e663936f7c199f0dffc07d9ae34d"
content-type: application/javascript
age: 22850
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 472 B IP
Hash 0d633eb41b3c40fcb835817d18b1fefc
f319bd2763ba5355adecb66a552f1c033b33fc7d
4cecb0c264b138ca33d948ee7f6f200c1e05efe6613d61918931f1e4bed13f35
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 19:36:45 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 01 Sep 2022 14:06:54 GMT
Expires: Thu, 08 Sep 2022 14:06:53 GMT
Etag: "f319bd2763ba5355adecb66a552f1c033b33fc7d"
Cache-Control: max-age=498007,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7448b242ec32b529-OSL
cdn.flaviar.com/build/8e5402ccdf94b59b9f78de47cd6cb684.svg
200 OK 868 B URL HTTP/2 cdn.flaviar.com/build/8e5402ccdf94b59b9f78de47cd6cb684.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 81e28f374062b798546ef6218ec5febf
e6532814c6602cb01770126889d9a8b4e9f8f340
7f7c1337807c89a6cbbef83986a1e88ffe8e6fd0837b406cdd857cd2d3a9afd4
GET /build/8e5402ccdf94b59b9f78de47cd6cb684.svg HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn.flaviar.com/build/menu-style.8c47cd30.css
Cookie: _ga_94QYBVSJNV=GS1.1.1662147403.1.0.1662147403.60.0.0; _ga=GA1.1.392760526.1662147404
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 868
date: Sun, 21 Aug 2022 09:15:05 GMT
last-modified: Fri, 19 Aug 2022 09:26:01 GMT
etag: "97ed703833547737ccd9a7d4031003f8-1"
cache-control: public, max-age=3888000, immutable
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Nj4CPsfhMvkdJf__j0BIaJnUEy0BqDnQy0pPFoWmvbyt5M2f2S8Ebg==
age: 1074101
X-Firefox-Spdy: h2
cdn.flaviar.com/build/147089eb0e969519162228615087840c.svg
200 OK 167 B URL HTTP/2 cdn.flaviar.com/build/147089eb0e969519162228615087840c.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 5e401daafb389738fc65f44508f1183a
6b8e3975b7e8b57812d9786dd181ae5c721a26ff
69484d982b36e8f772df946ef9cd4fb2a3c21a1ae9383a480b0e2f0957fa1542
GET /build/147089eb0e969519162228615087840c.svg HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn.flaviar.com/build/menu-style.8c47cd30.css
Cookie: _ga_94QYBVSJNV=GS1.1.1662147403.1.0.1662147403.60.0.0; _ga=GA1.1.392760526.1662147404
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 167
date: Wed, 20 Jul 2022 01:20:50 GMT
last-modified: Tue, 19 Jul 2022 13:45:17 GMT
etag: "a8a8c9c926542ca0dcd8356d88824554-1"
cache-control: public, max-age=3888000, immutable
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ir6RhcBl5SR4Ua8iKw-aonpZaT3Nw5b_xSJdVUXATs30YYh930yh1Q==
age: 3867356
X-Firefox-Spdy: h2
cdn.flaviar.com/build/07184e06ca198becaa32a3072844de09.svg
200 OK 833 B URL HTTP/2 cdn.flaviar.com/build/07184e06ca198becaa32a3072844de09.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash d475a6232c8dbfe60435dc33393c1d94
f6f7d10ec25ce08390d119e0e336f12778ff6454
7dce7db50945da6826532001d0202100aca433eca2c813e049dea8287e9325da
GET /build/07184e06ca198becaa32a3072844de09.svg HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn.flaviar.com/build/menu-style.8c47cd30.css
Cookie: _ga_94QYBVSJNV=GS1.1.1662147403.1.0.1662147403.60.0.0; _ga=GA1.1.392760526.1662147404
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 833
date: Mon, 25 Jul 2022 02:40:52 GMT
last-modified: Sat, 23 Jul 2022 09:37:12 GMT
etag: "c723d6ba9d3b3b71adc451319878ccf0-1"
cache-control: public, max-age=3888000, immutable
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: sSAMlkSDGR3y-uO64Lpqt3N8IN19ApA3N9uf9-_yFzLheSzuSmy9ag==
age: 3430554
X-Firefox-Spdy: h2
cdn.flaviar.com/build/8e769ca9d9e2648a227dcce8df32cf4a.svg
200 OK 989 B URL HTTP/2 cdn.flaviar.com/build/8e769ca9d9e2648a227dcce8df32cf4a.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (325)
Hash 0ef53efd9eda33fbf1c074b97314adb1
663c0ea54774092725e386bdf82b1e8af874a1a2
66cc0615e8693fcf5d883d590c76af012f7c6e6adc8efaf64cbc2d87cc6846e1
GET /build/8e769ca9d9e2648a227dcce8df32cf4a.svg HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn.flaviar.com/build/menu-style.8c47cd30.css
Cookie: _ga_94QYBVSJNV=GS1.1.1662147403.1.0.1662147403.60.0.0; _ga=GA1.1.392760526.1662147404
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 989
date: Sun, 21 Aug 2022 06:24:21 GMT
last-modified: Fri, 19 Aug 2022 09:26:01 GMT
etag: "88296ab1695586cb2e6a5ce16956d5fd-1"
cache-control: public, max-age=3888000, immutable
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: A6sWgqJbJqs3WrBQlklnrw3zRrB2hNY-usIjAayIgAT7b3eIp94KLA==
age: 1084345
X-Firefox-Spdy: h2
cdn.flaviar.com/build/472a037422a33e2102d4886749ca2e8b.svg
200 OK 1.7 kB URL HTTP/2 cdn.flaviar.com/build/472a037422a33e2102d4886749ca2e8b.svg
IP
Hash f3e6623aaa7922445f0831ca4f6f24e5
580bb8a7cde4a987e9fc4aa0932c97c425d6b084
4d0d0860603aa82141852fca93f9a194039f26dd25d34789954f03b472103b64
GET /build/472a037422a33e2102d4886749ca2e8b.svg HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn.flaviar.com/build/menu-style.8c47cd30.css
Cookie: _ga_94QYBVSJNV=GS1.1.1662147403.1.0.1662147403.60.0.0; _ga=GA1.1.392760526.1662147404
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
date: Sat, 13 Aug 2022 04:33:29 GMT
last-modified: Fri, 12 Aug 2022 12:52:37 GMT
etag: W/"93c72d6a1d1d7ef7f20865fd2930793a-1"
cache-control: public, max-age=3888000, immutable
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: gdLKN74REPun8sLNjC6LiLap4LS8XRYhxdloZKHn2Noerv2i0dy6fw==
age: 1782197
X-Firefox-Spdy: h2
cdn.flaviar.com/build/1ee71b83be6fad83ff48935d24648998.svg
200 OK 948 B URL HTTP/2 cdn.flaviar.com/build/1ee71b83be6fad83ff48935d24648998.svg
IP
File type SVG Scalable Vector Graphics image\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (452)
Hash a81578c8c3ef71486b6fad89e0409258
52d23784c9f4dd552c7634e7e50ac54ebd6264f1
3beac46fd9b2fe5582792cff468d249bdc069850f9c37c78287d192a830b435c
GET /build/1ee71b83be6fad83ff48935d24648998.svg HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn.flaviar.com/build/app-style.46a221b5.css
Cookie: _ga_94QYBVSJNV=GS1.1.1662147403.1.0.1662147403.60.0.0; _ga=GA1.1.392760526.1662147404
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 948
date: Fri, 12 Aug 2022 00:13:02 GMT
last-modified: Thu, 11 Aug 2022 09:53:37 GMT
etag: "a07f5a2d6ef2907b080ceef247a688e0-1"
cache-control: public, max-age=3888000, immutable
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: RJcU8cuIGczfl5LkxmtRh8W2rGHtMrhyMx1BrzDKOnv3LCoAtwRVaA==
age: 1884224
X-Firefox-Spdy: h2
cdn.flaviar.com/build/images/landingPage/frontpage/01_hero_desktop_membership.093b6202.jpg
200 OK 118 kB URL HTTP/2 cdn.flaviar.com/build/images/landingPage/frontpage/01_hero_desktop_membership.093b6202.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1434x1094, components 3\012- data
Size 118 kB (117885 bytes)
Hash 8ae454b0cd1ff5eda6d54988f055366c
9b8d69bd97443055df393afe8385aa4787b24ef6
2411b89938db306b9e96167501c6e2349848ac0d30e6433e9f5d5868aa7631ee
GET /build/images/landingPage/frontpage/01_hero_desktop_membership.093b6202.jpg HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Cookie: _ga_94QYBVSJNV=GS1.1.1662147403.1.0.1662147403.60.0.0; _ga=GA1.1.392760526.1662147404
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 117885
date: Tue, 21 Jun 2022 11:37:59 GMT
last-modified: Tue, 21 Jun 2022 11:33:51 GMT
etag: "0148f9a547222ba521760f429bfee563-1"
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: WTruK2o-lYXiDOLngandEUgTWbAkD_Ka91RLBZoUnYFqiVX9owm4Qw==
age: 6335927
X-Firefox-Spdy: h2
cdn.flaviar.com/build/ef92299a86f9f06db9c9cb6338f70445.svg
200 OK 517 B URL HTTP/2 cdn.flaviar.com/build/ef92299a86f9f06db9c9cb6338f70445.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (413)
Hash 39c7100bc113cfadf92ffd571834e547
e3964948a9d71014ad9aa5b78ee1106315691ac4
222bf3fda43bcb74628055cd4224a6cff48edd5524a9326ec93d70c1cd58b94c
GET /build/ef92299a86f9f06db9c9cb6338f70445.svg HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn.flaviar.com/build/landing-frontpage.2932a276.css
Cookie: _ga_94QYBVSJNV=GS1.1.1662147403.1.0.1662147403.60.0.0; _ga=GA1.1.392760526.1662147404
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 517
date: Sun, 14 Aug 2022 08:08:58 GMT
last-modified: Fri, 12 Aug 2022 12:52:42 GMT
etag: "18056129aed2639bd3faacbf444bdc8a-1"
cache-control: public, max-age=3888000, immutable
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: i89vhJgOqozkGEsQdp8YZAAbdvvxYLR0nBPyFh2yRTiDHv8C6NzD8A==
age: 1682868
X-Firefox-Spdy: h2
cdn.flaviar.com/build/ee1bfc1004d7a262f4cab6b3a57236b2.svg
200 OK 403 B URL HTTP/2 cdn.flaviar.com/build/ee1bfc1004d7a262f4cab6b3a57236b2.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 40cd3269593182aa24ee9208f99a7a29
24a1613b1214857f4f2608a0905a5bcbb92d909a
b5593ea00b3b76f818402c2eea2a4fc751d3be852c304b49cd5f227249d7fafb
GET /build/ee1bfc1004d7a262f4cab6b3a57236b2.svg HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn.flaviar.com/build/menu-style.8c47cd30.css
Cookie: _ga_94QYBVSJNV=GS1.1.1662147403.1.0.1662147403.60.0.0; _ga=GA1.1.392760526.1662147404
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 403
last-modified: Wed, 13 Jul 2022 07:10:54 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 28 Aug 2022 05:00:04 GMT
cache-control: public, max-age=3888000, immutable
etag: "74e5fbff2bf990dcf3d9f3787c5b9a6e-1"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: UzE-140UnyEwKnSg_BaaG7Viag7AGLd03usBFsdaN1NfQB96JJ34_w==
age: 484602
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 471 B IP
Hash b9db451530001056ede89609c8201327
0b26eb9123b16fa941724340993798da2d68c420
e2cae98cf61838f5b0f1362ed1b4a948d06a009715daa6bf110f5d69bf939f0b
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 19:36:45 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 02 Sep 2022 08:28:57 GMT
Expires: Fri, 09 Sep 2022 08:28:56 GMT
Etag: "0b26eb9123b16fa941724340993798da2d68c420"
Cache-Control: max-age=564130,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7448b2434ce6b4fd-OSL
cdn.sgmntfy.com/pa.js
200 OK 3.7 kB IP
File type ASCII text, with very long lines (3744), with no line terminators
Hash 7327381bba6f249fe470d17c0dca2cb4
b6fac12855c66c4841a38d07934fc22302e881ef
393195c622ffdab45d8f71e6988cdcc65ef85102061defa603882dc9f80d11ec
Analyzer Verdict Alert quad9 Sinkholed
GET /pa.js HTTP/1.1
Host: cdn.sgmntfy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycduZlVRTfew0v7g9gbCNwwGeJVeRp-flt3io1w2UKuff_65QzXG0C1WsEowSc9NB0pjpMSth7B61vi-nvKmlQDW2JjxKG5fI
x-goog-generation: 1654598345914433
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 3744
content-language: en
x-goog-hash: crc32c=EasKAQ==, md5=cyc4G7pvJJ/kcNF8DcostA==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 3744
server: UploadServer
date: Fri, 02 Sep 2022 19:25:06 GMT
expires: Fri, 02 Sep 2022 20:25:06 GMT
cache-control: public, max-age=3600
age: 699
last-modified: Tue, 07 Jun 2022 10:39:06 GMT
etag: "7327381bba6f249fe470d17c0dca2cb4"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.flaviar.com/build/fonts/MalagaOT-Bold.9fd9e2b9.otf
200 OK 50 kB URL HTTP/2 cdn.flaviar.com/build/fonts/MalagaOT-Bold.9fd9e2b9.otf
IP
File type OpenType font data\012- data
Hash c0e61b5f7f375ab77613e017caa5dee3
d9ebdda184ea6b507705b4f47067c8fdfdf3bf98
367552a5c9a7743b37d3888dac876a836c2575c93a2b74666b049378aa397b80
GET /build/fonts/MalagaOT-Bold.9fd9e2b9.otf HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://flaviar.com
Connection: keep-alive
Referer: https://cdn.flaviar.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: font/otf
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 7776000
last-modified: Thu, 07 Jul 2022 10:59:37 GMT
server: AmazonS3
content-encoding: gzip
date: Mon, 22 Aug 2022 02:49:35 GMT
cache-control: public, max-age=3888000, immutable
etag: W/"f844ae9d5dccf1719fadc1a2d0bc8388-1"
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Pdyc1rphFJBCeoZMdkyyyzSGEtkBA0IHhLzQjbgJ0xrevl23zdPuHw==
age: 1010831
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 003e8a2cb35bb65683fccbf8bf7a9797
b26fbc7607825162686c7e164d51956addeb1a6c
a71ec1144878270f76c09c51967a1d24b7d82dd700e83216be1e814a74796403
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 19:36:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.flaviar.com/build/af44c8c110cd16eae6b6311918b6fdae.svg
200 OK 801 B URL HTTP/2 cdn.flaviar.com/build/af44c8c110cd16eae6b6311918b6fdae.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (596)
Hash 52f6aaba39988f82a78644b6b850a8c6
ceaa598a1f373e1685a29e1115f12095ddd41014
6a2455433d22df3e6e77c645f15ee17e195470c9cbfc3ea9eab55e92ffd59db1
GET /build/af44c8c110cd16eae6b6311918b6fdae.svg HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn.flaviar.com/build/menu-style.8c47cd30.css
Cookie: _ga_94QYBVSJNV=GS1.1.1662147403.1.0.1662147403.60.0.0; _ga=GA1.1.392760526.1662147404
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
date: Mon, 15 Aug 2022 06:11:36 GMT
last-modified: Fri, 12 Aug 2022 12:52:37 GMT
etag: W/"a26ba83909a48eeaae67ab9fc76531f4-1"
cache-control: public, max-age=3888000, immutable
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: IcBwKnQp41o_tMXXaabKE_-s-ueqW8_t1cY3rOG4QBAqvNkb3duVlA==
age: 1603509
X-Firefox-Spdy: h2
use.typekit.net/af/8de6d2/00000000000000003b9adc6b/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3
200 OK 29 kB URL HTTP/2 use.typekit.net/af/8de6d2/00000000000000003b9adc6b/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3
IP
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), CFF, length 29392, version 1.0\012- data
Hash ea9b57a664fddcc8ca4ac7057ed8b53b
4cfa452e318ab308c8009ad1257fed42e46ba093
360e1a5c62337c585e8f8b9ba82cd440d4540c444e905665452b93fe785c082b
GET /af/8de6d2/00000000000000003b9adc6b/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://flaviar.com
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 29392
etag: "2bd51188b101f4cf29ce1d8dfdbe91d00fc07ba6"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Fri, 02 Sep 2022 19:36:45 GMT
X-Firefox-Spdy: h2
cdn.flaviar.com/build/fonts/MalagaOT-RegItalic.353f6a6d.otf
200 OK 78 kB URL HTTP/2 cdn.flaviar.com/build/fonts/MalagaOT-RegItalic.353f6a6d.otf
IP
Hash 47b252d14e573b5502dcf3a03fbec4b0
b7fec277613e2a9c45a18fec340164d5e16d53cf
41deaaf982e6fdddf25666a045520d536508504beea506e733e90edeb4ea2fa5
GET /build/fonts/MalagaOT-RegItalic.353f6a6d.otf HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://flaviar.com
Connection: keep-alive
Referer: https://cdn.flaviar.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: font/otf
date: Sat, 20 Aug 2022 08:10:35 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 7776000
last-modified: Fri, 19 Aug 2022 09:26:10 GMT
etag: W/"91795c6fb0338a75e2f2c7a1106bbd13-1"
cache-control: public, max-age=3888000, immutable
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: VwtGx4gYezerPIecodOz3R3iqi1mFbYLAf9_wxf0_XeCXgusliWjwQ==
age: 1164371
X-Firefox-Spdy: h2
use.typekit.net/af/379cfa/00000000000000003b9adc6d/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3
200 OK 12 kB URL HTTP/2 use.typekit.net/af/379cfa/00000000000000003b9adc6d/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3
IP
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), CFF, length 11668, version 1.0\012- data
Hash 71eca0957e4d35fc26852895f49491f8
d9ba92c55ef2a7370857143922344880bac2bf6e
4e2db239b50398011c1fb49a5ea7e296a9babab1a7b4968d1974d417f1ab805b
GET /af/379cfa/00000000000000003b9adc6d/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://flaviar.com
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 11668
etag: "a53237c24cbd279f0405e007f31ec7f47234819b"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Fri, 02 Sep 2022 19:36:45 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 003e8a2cb35bb65683fccbf8bf7a9797
b26fbc7607825162686c7e164d51956addeb1a6c
a71ec1144878270f76c09c51967a1d24b7d82dd700e83216be1e814a74796403
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 19:36:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
widget.trustpilot.com/trustboxes/5419b6ffb0d04a076446a9af/index.html?templateId=5419b6ffb0d04a076446a9af&businessunitId=5c63d6134064df0001fff3b7
200 OK 2.0 kB URL HTTP/2 widget.trustpilot.com/trustboxes/5419b6ffb0d04a076446a9af/index.html?templateId=5419b6ffb0d04a076446a9af&businessunitId=5c63d6134064df0001fff3b7
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (6057)
Hash 7e6ce93cd2ad7bd5b3ea7e37c8ca26f4
4390cb14ab843a975ba58b1ef640232f1dc90b60
8a0077e367b2d6fd379d030daad042f7c4bb4bdbb29c2f6c86e4a2370230c4eb
GET /trustboxes/5419b6ffb0d04a076446a9af/index.html?templateId=5419b6ffb0d04a076446a9af&businessunitId=5c63d6134064df0001fff3b7 HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
content-length: 1968
last-modified: Tue, 14 Jun 2022 14:06:19 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
date: Fri, 02 Sep 2022 19:36:45 GMT
cache-control: max-age=86400
etag: "7e6ce93cd2ad7bd5b3ea7e37c8ca26f4"
x-cache: Hit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: D0InlAfDrn7e7h1EtC_hVzI1l5r6cXyWszIsxjRRxnxrQh6W7eppHg==
age: 60525
X-Firefox-Spdy: h2
cdn.flaviar.com/build/fa85bb2bd3533a168c4d9437b5aa7b0d.svg
200 OK 2.7 kB URL HTTP/2 cdn.flaviar.com/build/fa85bb2bd3533a168c4d9437b5aa7b0d.svg
IP
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (6057)
Hash c4a26836271124dc60fec69dc83cebbd
057d7cb1f82bbcc8d4e265e9d0b3de3bbc5614d5
1e362850cafe5174713a28e4690882d55339b20dd5f4be86f2628399e3b74e67
GET /build/fa85bb2bd3533a168c4d9437b5aa7b0d.svg HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn.flaviar.com/build/menu-style.8c47cd30.css
Cookie: _ga_94QYBVSJNV=GS1.1.1662147403.1.0.1662147403.60.0.0; _ga=GA1.1.392760526.1662147404
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Mon, 18 Jul 2022 09:59:47 GMT
server: AmazonS3
content-encoding: gzip
date: Thu, 01 Sep 2022 20:21:03 GMT
cache-control: public, max-age=3888000, immutable
etag: W/"255764b619885adda75866123ece8dda-1"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: yXS-vv84l8Sk_QuZqNO5LsU2VDcTGi4b225z9b2BZpbqUNiE085xFg==
age: 83743
X-Firefox-Spdy: h2
cdn.flaviar.com/build/images/favicon/favicon-16x16.d0ef64b5.png
200 OK 366 B URL HTTP/2 cdn.flaviar.com/build/images/favicon/favicon-16x16.d0ef64b5.png
IP
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash 4c06c8e440650c300d3b62fa3e070fd4
4cf5e23e149202acf229889ad06d286f01374837
277ec8ba10f75611524e035b6e02aed13b21ed7206ebdcaaac236de61246d410
GET /build/images/favicon/favicon-16x16.d0ef64b5.png HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Cookie: _ga_94QYBVSJNV=GS1.1.1662147403.1.0.1662147403.60.0.0; _ga=GA1.1.392760526.1662147404
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 366
date: Mon, 08 Aug 2022 02:26:13 GMT
last-modified: Mon, 01 Aug 2022 07:18:28 GMT
etag: "334446e663de0654661de79703a6f44b-1"
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Dcsb2udnsiCfr5YsJTYjsAwh9O_S8muwvexfjqVXi23-EHc_y08tNw==
age: 2221833
X-Firefox-Spdy: h2
cdn.flaviar.com/build/menu-style.8c47cd30.css
200 OK 28 kB URL HTTP/2 cdn.flaviar.com/build/menu-style.8c47cd30.css
IP
Hash 727d307c56e38fe0dba5d6fd2076babd
1817c4f138f618146b1b02aaf92f8700c3886780
a0fcff86f23b41ec0d155ba1d8f173bc23326c9fcc834e753d42a31066df08af
GET /build/menu-style.8c47cd30.css HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
date: Mon, 22 Aug 2022 10:43:54 GMT
last-modified: Mon, 22 Aug 2022 10:42:57 GMT
etag: W/"fd78c77b67b403ee82822b9dc48ca00f-1"
cache-control: public, max-age=3888000, immutable
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: rh8xc6b6oo4EHw0799riud7-RKT2UL5d6OwZPYunNAU4QdzHZEnQNg==
age: 982371
X-Firefox-Spdy: h2
cdn.flaviar.com/build/images/landingPage/frontpage/05_icon_wheel.ca85a479.svg
200 OK 1.1 kB URL HTTP/2 cdn.flaviar.com/build/images/landingPage/frontpage/05_icon_wheel.ca85a479.svg
IP
Hash fd77902365195f899ed303ffd6c4414a
c875ffbd42f6fb904233f5453e80d32f904747b3
330b697750c569c4dc479b513398fa34a6a21f5fe1c1198738639d9bd437d03e
GET /build/images/landingPage/frontpage/05_icon_wheel.ca85a479.svg HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
date: Thu, 25 Aug 2022 13:06:27 GMT
last-modified: Wed, 24 Aug 2022 11:29:08 GMT
etag: W/"3c6683219e258ac228d9e3d2444fdce2-1"
cache-control: public, max-age=3888000, immutable
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 8pvAbi8W_BFh6WnhHJllgYusXbkgZHbpEYbF7tL9VpI90r9Vp4JBrA==
age: 714618
X-Firefox-Spdy: h2
cdn.flaviar.com/build/fonts/MalagaOT-Reg.27ac096b.otf
200 OK 66 kB URL HTTP/2 cdn.flaviar.com/build/fonts/MalagaOT-Reg.27ac096b.otf
IP
Hash 5ac0f102703b412b579c373370d2b82a
bde0672c263722d66dfd8dc88533dfa00c49061f
ac4eb51c2ad7ffbfbb17ab432a95df73585188565b23873537c084798766e9ad
GET /build/fonts/MalagaOT-Reg.27ac096b.otf HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://flaviar.com
Connection: keep-alive
Referer: https://cdn.flaviar.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: font/otf
date: Sun, 21 Aug 2022 05:02:41 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 7776000
last-modified: Fri, 19 Aug 2022 09:26:10 GMT
etag: W/"137d230a777448619cc48431b268aa92-1"
cache-control: public, max-age=3888000, immutable
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: LG3qUjsDvRA5CSGoV7JMUi58bvAGHkgeIhrQVEO28ZeDKfIb5ED-nw==
age: 1089245
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP
File type ASCII text, with very long lines (64348)
Hash 53e4933126779cbf269a5819d467ad4b
1c3c6b27a0660a44717be304d90834cf2f9cf3ce
ed5ad968f7d95b37c817e86b54062702bef60b1ffd3977248aad23072af06b87
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: 8gebG7OU8+IO6FVZmSS5Vlz2kJwt5gIbO9K9rjRrCSHZ8YdftI/DOWOtZ8nBR0u266ebqpoqQTU9hvtStfCXJQ==
priority: u=3,i
content-length: 26752
x-fb-trip-id: 1904183273
date: Fri, 02 Sep 2022 19:36:46 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.flaviar.com/build/2.543c78f7.js
200 OK 110 kB URL HTTP/2 cdn.flaviar.com/build/2.543c78f7.js
IP
File type Unicode text, UTF-8 text, with very long lines (2515)
Size 110 kB (110300 bytes)
Hash 7c2a32c9ce1ae272ed68824111bac6c1
0d8b5de1b7b656605156b5712092e53552cc3251
3237049d42735a428e14310b7940fdad48a92a660554b3cd88d5567d6ecadbbf
GET /build/2.543c78f7.js HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: application/javascript
date: Sat, 13 Aug 2022 21:03:14 GMT
last-modified: Fri, 12 Aug 2022 12:52:47 GMT
etag: W/"3f7a92fa1ccb0db3d9c3bb38fda86113-1"
cache-control: public, max-age=3888000, immutable
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 331QZRLyHKzwjQf9mzWaRkJtAVzxKiQQBgS6gHtp9X5c8h3VgdDb9Q==
age: 1722811
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash b1ad004f11b9c337660dfc7b6a5091de
5e017d69c3549cd9d9b33d11486989bec8500b5a
6dfad0eaa16c37e2c7c9264636adcf2b3eed1577d44df08c388a983b810121b2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2972
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 19:36:46 GMT
Last-Modified: Fri, 02 Sep 2022 18:47:14 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
cdn.flaviar.com/build/1.99186aeb.js
200 OK 72 kB URL HTTP/2 cdn.flaviar.com/build/1.99186aeb.js
IP
Hash 832cf30d6fc695278dee36785b1463f7
0f8f0ef0d4cb0a767d4ab578d9e90e649744d2f0
a664eae1215c7e282063c4b0e649d86fcf7da1e86a2ea7e338ecdce5fcb0ce0e
GET /build/1.99186aeb.js HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: application/javascript
date: Fri, 02 Sep 2022 14:14:35 GMT
last-modified: Fri, 02 Sep 2022 14:13:24 GMT
etag: W/"ac4110a3686e2f99e91f8262f8006ac6-1"
cache-control: public, max-age=3888000, immutable
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: agPcrhUmHtZBPq2dYAedzLDhtVxMAmM1V6UnmqJpodQfzpXeveG8xQ==
age: 19330
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 471 B IP
Hash b9db451530001056ede89609c8201327
0b26eb9123b16fa941724340993798da2d68c420
e2cae98cf61838f5b0f1362ed1b4a948d06a009715daa6bf110f5d69bf939f0b
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 19:36:46 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 02 Sep 2022 08:28:57 GMT
Expires: Fri, 09 Sep 2022 08:28:56 GMT
Etag: "0b26eb9123b16fa941724340993798da2d68c420"
Cache-Control: max-age=564130,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7448b2460934b529-OSL
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15978
Expires: Sat, 03 Sep 2022 00:03:04 GMT
Date: Fri, 02 Sep 2022 19:36:46 GMT
Connection: keep-alive
p.typekit.net/p.gif?s=1&k=bne0epn&ht=tk&h=flaviar.com&f=28578.28579.28736&a=7301736&js=1.21.0&app=typekit&e=js&_=1662147404501
200 OK 35 B URL HTTP/2 p.typekit.net/p.gif?s=1&k=bne0epn&ht=tk&h=flaviar.com&f=28578.28579.28736&a=7301736&js=1.21.0&app=typekit&e=js&_=1662147404501
IP
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 81144d75b3e69e9aa2fa3e9d83a64d03
f0fbc60b50edf5b2a0b76e0aa0537b76bf346ffc
9b9265c69a5cc295d1ab0d04e0273b3677db1a6216ce2ccf4efc8c277ed84b39
GET /p.gif?s=1&k=bne0epn&ht=tk&h=flaviar.com&f=28578.28579.28736&a=7301736&js=1.21.0&app=typekit&e=js&_=1662147404501 HTTP/1.1
Host: p.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=604800
content-type: image/gif
cross-origin-resource-policy: cross-origin
etag: "61c32ad2-23"
last-modified: Wed, 22 Dec 2021 13:40:34 GMT
server: nginx
content-length: 35
unused62: 8096267
date: Fri, 02 Sep 2022 19:36:46 GMT
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15978
Expires: Sat, 03 Sep 2022 00:03:04 GMT
Date: Fri, 02 Sep 2022 19:36:46 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15978
Expires: Sat, 03 Sep 2022 00:03:04 GMT
Date: Fri, 02 Sep 2022 19:36:46 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 20cc30f2a41f9c5e824ea46460548950
c153b447d44cbbe8f30d7f490605d1a430af20a1
0f8bb96e7dfd8a6bb3d7eae1a958195cb8ca9f20e0ad8cd952c34267ff0625f3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 19:36:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c0ef483-e545-4a1f-b9b9-88778330d881.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c0ef483-e545-4a1f-b9b9-88778330d881.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 955f2a35bd6b3802670e7fa8a7cda833
4c70d27f7c51b7fcae1d8a883bfc2e67a551ae6c
2fb517039f0704d2f6fe2fa78eae47c71c645add1c2276f8726248184ae45760
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c0ef483-e545-4a1f-b9b9-88778330d881.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10435
x-amzn-requestid: 813ec4ca-243d-46cb-a6a6-8ec58e5dd9f8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzLjdHwnIAMFhzA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112615-4733cfb83cf0e8734abc5716;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:37:25 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: n6DJbsUGTdXT42cNLTDq6Uz28H2SDhwq6drdKP4axAHsBz471X7r_g==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 21:37:26 GMT
age: 79160
etag: "4c70d27f7c51b7fcae1d8a883bfc2e67a551ae6c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15978
Expires: Sat, 03 Sep 2022 00:03:04 GMT
Date: Fri, 02 Sep 2022 19:36:46 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9564bd06-b264-460b-96bb-6b37cf25a72b.jpeg
200 OK 17 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9564bd06-b264-460b-96bb-6b37cf25a72b.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 12756903aaa74164feb5f8525398ca36
9fef9b071daea6793cbbdfe391254ac4326b1aa2
6d474a6d96aebfed43a4f6812f18a1be8d100c590f75eb0fbf4ec7277dd0c442
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9564bd06-b264-460b-96bb-6b37cf25a72b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 16818
x-amzn-requestid: fa921878-2054-453b-b313-681cdd9c9068
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xj-Z_HUNIAMFltg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630b110c-053ce81943fea70c2de7daa0;Sampled=0
x-amzn-remapped-date: Sun, 28 Aug 2022 06:54:04 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: CDyJUMKmUlrT3LgfeiZhQN1XEV2vKTIZtmV4QZYXaoM4PWbYo8IyJA==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 5954c6394458ffb44c970b3819d7ff2a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Sep 2022 14:46:29 GMT
age: 17417
etag: "9fef9b071daea6793cbbdfe391254ac4326b1aa2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F141f656b-9191-4cf5-a05b-891ed5c9656f.jpeg
200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F141f656b-9191-4cf5-a05b-891ed5c9656f.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5c3b7580a37e6eb7e5bd18491f1d4dd6
288b82ad8f924eb9570ae1c55da84d041f862366
046d1ef76448c53446068ef5f8315b7299484996cdebfd9d1e749b4ded9c7d3c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F141f656b-9191-4cf5-a05b-891ed5c9656f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5079
x-amzn-requestid: 3b19c77a-2e9b-499f-890b-36fc4ee72ba7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XslOVEtZIAMFv1w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630e825b-01b7b71617b59f7414a0e5e5;Sampled=0
x-amzn-remapped-date: Tue, 30 Aug 2022 21:34:19 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: et3ZsWRVoBNMpArUk9CohTyMpS5F0eKiR6cZJRfwAEiiFJUaeay58g==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 21:48:05 GMT
age: 78521
etag: "288b82ad8f924eb9570ae1c55da84d041f862366"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6b23082-fe08-4f5d-b709-47175510cf45.jpeg
200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6b23082-fe08-4f5d-b709-47175510cf45.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5e05660322f0368dd2bf8067d7e4554d
ec65cb47d86488f734c945a210d5f636a40fea2c
98875230ec45766102191bdc4180742fa3b8f3ad5ad1a128d12437105f86247e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6b23082-fe08-4f5d-b709-47175510cf45.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6196
x-amzn-requestid: a7d6ce70-06d7-498c-8024-80185a3fc3e4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzLyLFmVIAMFkcQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112674-3fad622927177e9236d7c50a;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:39:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: wLezqM4_yKqtOR7D43beBqm8TAD5y8eQ7xHOxjDJdHchCpyusuzMuQ==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 21:55:46 GMT
etag: "ec65cb47d86488f734c945a210d5f636a40fea2c"
content-type: image/jpeg
age: 78060
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06f2c9c2-de63-41e1-8359-5a5923a2b1e8.webp
200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06f2c9c2-de63-41e1-8359-5a5923a2b1e8.webp
IP
Hash 1d8e464f8e0ccd7655a56a66f03014f9
1623745548009ca333a483de1d33c80e44b56efc
c3eed68ae83ba738a153c16c90262645d05f8f1339d2522a4b8ece65d0b4bd6b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06f2c9c2-de63-41e1-8359-5a5923a2b1e8.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9252
x-amzn-requestid: 7feebba8-f6b9-4b79-9726-5a7534da277e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzLyVG5DoAMF_Ug=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112675-3123158f3dcfbd476537ca3c;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:39:01 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: BOa5zGQyJS9q9bHmtKzlNtyS9ToGPZJkDFo2uY2lzz8Lnd3cZLQEaA==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 22:01:10 GMT
age: 77736
etag: "cbb4546228115cccc122b16209e70171bef5c1f2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff3cef8f6-078d-43f5-ba9b-fcc5dc69a7f7.jpeg
200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff3cef8f6-078d-43f5-ba9b-fcc5dc69a7f7.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cab49f59207f816d98a21cd3fc2c37d1
8a9278f8ff5d149420673649878ca1ee266a0783
aebe0748f049bcb801be83459d4bae66b9c1453de3b0ea7e6a63bea88b6e7a5a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff3cef8f6-078d-43f5-ba9b-fcc5dc69a7f7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13104
x-amzn-requestid: da627f0c-5cde-4a37-878c-dcada8a25f64
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzL6_EYoIAMFiYw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631126ac-10dbcb432e6d1af46cffaefe;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:39:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 4Ve7euVpAusbqUYkx-vWIBLDbIidnuXDqMDG0LRpu40sXh6a2fEPJA==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 22:06:50 GMT
age: 77396
etag: "8a9278f8ff5d149420673649878ca1ee266a0783"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 77dcbad667fa753223ab404f9e5efc2e
8aa7da6ed9b77d478e9205e41c8b6fe0a973ae70
0a59d091c042b60cb2193e33754db4e8c2fd7c8e4abd5150a72db06cdc661a94
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 19:36:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 9b4e21714922b9aaa5c0215bbc637b8b
0066ad765c28f770bec2291d87bcee9147a8f7b9
6e5d027db3e6a73e2afad5df8fde36b33706a8bc9787a8667240f6aa92cb506f
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Fri, 02 Sep 2022 19:36:45 GMT
Server: ECS (dcb/7FA6)
X-Cache: Miss from cloudfront
Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: edZTFOKY7LsmdhODtV4v4yTmZcrh9h4h4PJW5Xu4qMFcNvjNEisnvw==
gandalf-eu.segmentify.com//get/key/v1.json?count=2
200 31 B URL HTTP/1.1 gandalf-eu.segmentify.com//get/key/v1.json?count=2
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JSON data\012- , ASCII text, with no line terminators
Hash e52c15ab06cdd5fc89b6b67dec1bce82
53aca90640cf0df75cb2ed89bb2f61d891654b07
6026f743e71f54130bd0dfd0d01437a8d76a029ba76cea004a68dac47cfa2785
GET //get/key/v1.json?count=2 HTTP/1.1
Host: gandalf-eu.segmentify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://flaviar.com
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Access-Control-Allow-Origin: *
Connection: keep-alive
Content-Encoding: br
Content-Type: application/json;charset=UTF-8
Date: Fri, 02 Sep 2022 19:36:46 GMT
Server: nginx
Transfer-Encoding: chunked
X-Server-Name: 954b0a27b6131b61ce7ca07d0e642523
cdn.flaviar.com/build/images/landingPage/frontpage/04_image_favorite_dram.1ae9ed19.jpg
200 OK 84 kB URL HTTP/2 cdn.flaviar.com/build/images/landingPage/frontpage/04_image_favorite_dram.1ae9ed19.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1268x898, components 3\012- data
Hash 9cddc511d9100cd3f67bffcfd5793b27
89836103be33b228999a13d01fdbd20db165dc99
0ef2bb53d0cffd55ad4c341bdb76f3f89c5b0de86719fbad396b1dde0c08c7f4
GET /build/images/landingPage/frontpage/04_image_favorite_dram.1ae9ed19.jpg HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Cookie: _ga_94QYBVSJNV=GS1.1.1662147403.1.0.1662147403.60.0.0; _ga=GA1.2.392760526.1662147404; _gid=GA1.2.706493816.1662147405; _dc_gtm_UA-28959768-20=1; _dc_gtm_UA-28959768-1=1; _fbp=fb.1.1662147404811.2050688717
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 83683
date: Fri, 26 Aug 2022 06:26:03 GMT
last-modified: Wed, 24 Aug 2022 11:29:10 GMT
etag: "4ed4ad1d3056db3e43645bacd890073f-1"
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 1fZMQlrTkqI-AiB4tH6OlVExCKx6WUTbn0mwFQvZMFTI4q9oxKVe3Q==
age: 652244
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=1649789958596951&ev=PageView&dl=https%3A%2F%2Fflaviar.com%2F&rl=&if=false&ts=1662147404815&sw=1280&sh=1024&v=2.9.79&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=30&fbp=fb.1.1662147404811.2050688717&eid=ob3_plugin-set_6de93633521358c5df4aea529894482649a257219d257c25034c4206f4dc99ee&it=1662147404604&coo=false&tm=1&exp=e0&rqm=GET
200 OK 44 B URL HTTP/2 www.facebook.com/tr/?id=1649789958596951&ev=PageView&dl=https%3A%2F%2Fflaviar.com%2F&rl=&if=false&ts=1662147404815&sw=1280&sh=1024&v=2.9.79&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=30&fbp=fb.1.1662147404811.2050688717&eid=ob3_plugin-set_6de93633521358c5df4aea529894482649a257219d257c25034c4206f4dc99ee&it=1662147404604&coo=false&tm=1&exp=e0&rqm=GET
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash b798f4ce7359fd815df4bdf76503b295
f8cc6addf1707ad236ad9970b0a48f9733d07da5
10d8d42d73a02ddb877101e72fbfa15a0ec820224d97cedee4cf92d571be5caa
GET /tr/?id=1649789958596951&ev=PageView&dl=https%3A%2F%2Fflaviar.com%2F&rl=&if=false&ts=1662147404815&sw=1280&sh=1024&v=2.9.79&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=30&fbp=fb.1.1662147404811.2050688717&eid=ob3_plugin-set_6de93633521358c5df4aea529894482649a257219d257c25034c4206f4dc99ee&it=1662147404604&coo=false&tm=1&exp=e0&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
date: Fri, 02 Sep 2022 19:36:46 GMT
expires: Fri, 02 Sep 2022 19:36:46 GMT
last-modified: Fri, 21 Dec 2012 00:00:01 GMT
cache-control: no-cache, must-revalidate, max-age=0
set-cookie:
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 44
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
widget.trustpilot.com/stats/TrustboxImpression?locale=en-US&styleHeight=28px&styleWidth=100%25&theme=light&url=https%3A%2F%2Fflaviar.com%2F&referrer=&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=5c63d6134064df0001fff3b7&widgetId=5419b6ffb0d04a076446a9af
204 No Content 0 B URL HTTP/2 widget.trustpilot.com/stats/TrustboxImpression?locale=en-US&styleHeight=28px&styleWidth=100%25&theme=light&url=https%3A%2F%2Fflaviar.com%2F&referrer=&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=5c63d6134064df0001fff3b7&widgetId=5419b6ffb0d04a076446a9af
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /stats/TrustboxImpression?locale=en-US&styleHeight=28px&styleWidth=100%25&theme=light&url=https%3A%2F%2Fflaviar.com%2F&referrer=&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=5c63d6134064df0001fff3b7&widgetId=5419b6ffb0d04a076446a9af HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Connection: keep-alive
Referer: https://widget.trustpilot.com/trustboxes/5419b6ffb0d04a076446a9af/index.html?templateId=5419b6ffb0d04a076446a9af&businessunitId=5c63d6134064df0001fff3b7
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
cache-control: no-store,no-cache
date: Fri, 02 Sep 2022 19:36:45 GMT
pragma: no-cache
server: Kestrel
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 3zMRAh0RbOqCRbjqVY2Se6EjZNxlaHW8VO2TW4aDuMqoBO_su7UJZw==
X-Firefox-Spdy: h2
widget.trustpilot.com/stats/TrustboxImpression?locale=en-US&styleHeight=42px&styleWidth=100%25&theme=light&url=https%3A%2F%2Fflaviar.com%2F&referrer=&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=5c63d6134064df0001fff3b7&widgetId=5419b6ffb0d04a076446a9af
204 No Content 0 B URL HTTP/2 widget.trustpilot.com/stats/TrustboxImpression?locale=en-US&styleHeight=42px&styleWidth=100%25&theme=light&url=https%3A%2F%2Fflaviar.com%2F&referrer=&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=5c63d6134064df0001fff3b7&widgetId=5419b6ffb0d04a076446a9af
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /stats/TrustboxImpression?locale=en-US&styleHeight=42px&styleWidth=100%25&theme=light&url=https%3A%2F%2Fflaviar.com%2F&referrer=&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=5c63d6134064df0001fff3b7&widgetId=5419b6ffb0d04a076446a9af HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Connection: keep-alive
Referer: https://widget.trustpilot.com/trustboxes/5419b6ffb0d04a076446a9af/index.html?templateId=5419b6ffb0d04a076446a9af&businessunitId=5c63d6134064df0001fff3b7
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
cache-control: no-store,no-cache
date: Fri, 02 Sep 2022 19:36:45 GMT
pragma: no-cache
server: Kestrel
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: pydMwIF7UEkEpKts73x72RZqJbi7FiPdDgAcp04K2S8IOL-O2Ad1hw==
X-Firefox-Spdy: h2
widget.trustpilot.com/stats/TrustboxView?locale=en-US&styleHeight=42px&styleWidth=100%25&theme=light&url=https%3A%2F%2Fflaviar.com%2F&referrer=&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=5c63d6134064df0001fff3b7&widgetId=5419b6ffb0d04a076446a9af
204 No Content 0 B URL HTTP/2 widget.trustpilot.com/stats/TrustboxView?locale=en-US&styleHeight=42px&styleWidth=100%25&theme=light&url=https%3A%2F%2Fflaviar.com%2F&referrer=&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=5c63d6134064df0001fff3b7&widgetId=5419b6ffb0d04a076446a9af
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /stats/TrustboxView?locale=en-US&styleHeight=42px&styleWidth=100%25&theme=light&url=https%3A%2F%2Fflaviar.com%2F&referrer=&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=5c63d6134064df0001fff3b7&widgetId=5419b6ffb0d04a076446a9af HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Connection: keep-alive
Referer: https://widget.trustpilot.com/trustboxes/5419b6ffb0d04a076446a9af/index.html?templateId=5419b6ffb0d04a076446a9af&businessunitId=5c63d6134064df0001fff3b7
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
cache-control: no-store,no-cache
date: Fri, 02 Sep 2022 19:36:45 GMT
pragma: no-cache
server: Kestrel
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: jW-gHal_CAXt-qv8eMy-hv7V6CxnCskGXD_P-HVnoiQKY9AmEGp_NA==
X-Firefox-Spdy: h2
www.redditstatic.com/ads/pixel.js
200 OK 7.7 kB URL HTTP/2 www.redditstatic.com/ads/pixel.js
IP
File type ASCII text, with very long lines (25224)
Hash 95212d33cfff78ad59f5af5b20c48c53
9b99a4091a6eb716bc68f1428e3c86eca068b25b
bd69f250efa08cb2c0a06c35d91fda762779820d87779019c25211f4559ebb1d
GET /ads/pixel.js HTTP/1.1
Host: www.redditstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 19 Jul 2022 22:48:09 GMT
etag: "95212d33cfff78ad59f5af5b20c48c53"
cache-control: public, max-age=60
content-encoding: gzip
content-type: application/javascript
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 02 Sep 2022 19:36:46 GMT
vary: Accept-Encoding,Origin
server: snooserv
report-to: {"group": "w3-reporting-nel", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting-nel.reddit.com/reports" }]}, {"group": "w3-reporting", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting.reddit.com/reports" }]}
nel: {"report_to": "w3-reporting-nel", "max_age": 14400, "include_subdomains": false, "success_fraction": 0.02, "failure_fraction": 0.02}
content-length: 7722
X-Firefox-Spdy: h2
sc-static.net/scevent.min.js
200 OK 7.9 kB URL HTTP/2 sc-static.net/scevent.min.js
IP
File type ASCII text, with very long lines (22702), with no line terminators
Hash 8017b8af70af76a9e0d8249a8e360db4
f1a1b2fa8d6ca01469cdee79ebc8f8d91bb03a54
1ecf4b2988b08fb2daecfd7c318f60b4a7aaf1463f846a448ac96242aefd182d
GET /scevent.min.js HTTP/1.1
Host: sc-static.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 7905
server: CloudFront
date: Fri, 02 Sep 2022 19:36:46 GMT
content-encoding: gzip
access-control-allow-origin: *
access-control-allow-headers: Content-Type
cache-control: private, s-maxage=0, max-age=600
set-cookie: X-AB=0d6e407936704bd380072f5891d28b0e;max-age=86400;expires=Sat, 03 Sep 2022 18:39:07 GMT;Path=/scevent.min.js; Secure; SameSite=None
x-cache: LambdaGeneratedResponse from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ssYZV-5KZ0kUhrrsobzaxYjWANbhqLUwZmFxEF-qoQvM8-iJYsOBFQ==
X-Firefox-Spdy: h2
ak.sail-horizon.com/spm/spm.v1.min.js
200 OK 44 kB URL HTTP/2 ak.sail-horizon.com/spm/spm.v1.min.js
IP
Hash 40b316f663273823b65d77c5b51bd76b
25e023762e0baa2adc984f9ad859ee4b4ada9818
82f72e9965319a97bbf9103a9b986f56ebc5195e37d28f93bf399ed08ced20db
GET /spm/spm.v1.min.js HTTP/1.1
Host: ak.sail-horizon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 23 Aug 2022 19:28:34 GMT
server: AmazonS3
content-encoding: gzip
date: Fri, 02 Sep 2022 19:36:46 GMT
cache-control: max-age=600; must-revalidate
etag: W/"5ac321f76860c47cd57c582425e76274"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: bClrzQ58peQMpU4N1Ky-JwHgUuN8pL5u7jnMiGzjHPFSAapOeQ6wvg==
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash e992e122e233074374d48d54659ae1ba
744212b3f1113b7b0e8abe2156708b73a4b577b9
d5bb95cee98070fb87b4abe8e69f5b502ecdd46a2f18f4e5ebbacb730233bc3e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5407
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 19:36:46 GMT
Last-Modified: Fri, 02 Sep 2022 18:06:39 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 471 B IP
Hash e992e122e233074374d48d54659ae1ba
744212b3f1113b7b0e8abe2156708b73a4b577b9
d5bb95cee98070fb87b4abe8e69f5b502ecdd46a2f18f4e5ebbacb730233bc3e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5407
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 19:36:46 GMT
Last-Modified: Fri, 02 Sep 2022 18:06:39 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 471 B IP
Hash e992e122e233074374d48d54659ae1ba
744212b3f1113b7b0e8abe2156708b73a4b577b9
d5bb95cee98070fb87b4abe8e69f5b502ecdd46a2f18f4e5ebbacb730233bc3e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5921
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 19:36:46 GMT
Last-Modified: Fri, 02 Sep 2022 17:58:06 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 471 B IP
Hash e992e122e233074374d48d54659ae1ba
744212b3f1113b7b0e8abe2156708b73a4b577b9
d5bb95cee98070fb87b4abe8e69f5b502ecdd46a2f18f4e5ebbacb730233bc3e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5155
Cache-Control: max-age=128293
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 19:36:46 GMT
Etag: "63119950-1d7"
Expires: Sun, 04 Sep 2022 07:14:59 GMT
Last-Modified: Fri, 02 Sep 2022 05:49:04 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash f7b826aa1cacd80aa7b9ea6bbf0995bd
2a8cb8e844209381680447b1800cabef234d138c
0aa0c26d82c4f70fe968d1e0170a34f1f627a11425336e559fcf16975883582e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0AA0C26D82C4F70FE968D1E0170A34F1F627A11425336E559FCF16975883582E"
Last-Modified: Wed, 31 Aug 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21558
Expires: Sat, 03 Sep 2022 01:36:04 GMT
Date: Fri, 02 Sep 2022 19:36:46 GMT
Connection: keep-alive
splow.flaviar.com/com.snowplowanalytics.snowplow/tp2
200 OK 0 B URL HTTP/2 splow.flaviar.com/com.snowplowanalytics.snowplow/tp2
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: splow.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://flaviar.com/
Origin: https://flaviar.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 19:36:46 GMT
content-length: 0
access-control-allow-origin: https://flaviar.com
access-control-allow-credentials: true
access-control-allow-headers: Content-Type
access-control-max-age: 5
x-robots-tag: noindex, nofollow, nosnippet, noarchive
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=u1CHUTg3GjDOMJDnFErIlKlyehSyRmB6idPB3FDE1MazFWHRb5gtA%2B11v7%2F91A0hgkoTz9C63f2D4QNNIlsWsg9GloOtIHaEkJ6T5kuoMKWFZ9xzim%2BejeE0tmqtXOlC1AJd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 7448b24c9afdb529-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
tr.snapchat.com/p?trackId=6b3cfdb2-83a5-49b3-91a3-78a85e672b3e&pid=b838e1c8-e5cb-4d99-bda2-d5594b71ff41&ev=PAGE_VIEW&pl=https%3A%2F%2Fflaviar.com%2F&ts=1662147405357&rf=&v=1.6.0&if=false&bt=1d53c387&intg=gtm&m_sl=3491&m_rd=3533&m_pi=2422&m_dcl=2521&m_fcps=2386&m_pl=3172&m_ic=0&m_pv=v2&u_hem=FFFeb045d78d273107348b0300c01d29b7552d622abbc6faf81b3ec55359aa9950c&u_c1=a3badab3-85a9-49d4-9ee7-3c6cad91d190&u_scsid=d6e52935-b9d8-4ab1-a37a-bd27a2ffb72d&u_sclid=430e920f-dd22-4c8d-93af-13468a8b5a7b&s_r_ids=0
200 OK 68 B URL HTTP/2 tr.snapchat.com/p?trackId=6b3cfdb2-83a5-49b3-91a3-78a85e672b3e&pid=b838e1c8-e5cb-4d99-bda2-d5594b71ff41&ev=PAGE_VIEW&pl=https%3A%2F%2Fflaviar.com%2F&ts=1662147405357&rf=&v=1.6.0&if=false&bt=1d53c387&intg=gtm&m_sl=3491&m_rd=3533&m_pi=2422&m_dcl=2521&m_fcps=2386&m_pl=3172&m_ic=0&m_pv=v2&u_hem=FFFeb045d78d273107348b0300c01d29b7552d622abbc6faf81b3ec55359aa9950c&u_c1=a3badab3-85a9-49d4-9ee7-3c6cad91d190&u_scsid=d6e52935-b9d8-4ab1-a37a-bd27a2ffb72d&u_sclid=430e920f-dd22-4c8d-93af-13468a8b5a7b&s_r_ids=0
IP
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash c4a2b870062c2bb98c500bc1526c0498
528666ccdb12997358077bc8fcdbfb6b825c7788
2aa4fa20701cdd6d8d56046069001186b5267e3ee7d0ef618ad2f4a683723e11
GET /p?trackId=6b3cfdb2-83a5-49b3-91a3-78a85e672b3e&pid=b838e1c8-e5cb-4d99-bda2-d5594b71ff41&ev=PAGE_VIEW&pl=https%3A%2F%2Fflaviar.com%2F&ts=1662147405357&rf=&v=1.6.0&if=false&bt=1d53c387&intg=gtm&m_sl=3491&m_rd=3533&m_pi=2422&m_dcl=2521&m_fcps=2386&m_pl=3172&m_ic=0&m_pv=v2&u_hem=FFFeb045d78d273107348b0300c01d29b7552d622abbc6faf81b3ec55359aa9950c&u_c1=a3badab3-85a9-49d4-9ee7-3c6cad91d190&u_scsid=d6e52935-b9d8-4ab1-a37a-bd27a2ffb72d&u_sclid=430e920f-dd22-4c8d-93af-13468a8b5a7b&s_r_ids=0 HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 19:36:47 GMT
access-control-allow-origin: *
cache-control: no-cache, no-transform
set-cookie: sc_at=v2|H4sIAAAAAAAAAAXBgQ3AMAgDsIuQALFEPSdj7AqOrz3Phz/Y5uCxStH0dlqHdIalgXYDyCiWc/0CygnPFjIAAAA=;SameSite=None;Version=1;Comment=;Domain=.snapchat.com;Path=/;Max-Age=33696000;Secure
content-type: image/png
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 68
x-envoy-upstream-service-time: 1
server: API Gateway
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.flaviar.com/sp/2.18.2/Lk98JfUw.js
200 OK 27 kB URL HTTP/2 cdn.flaviar.com/sp/2.18.2/Lk98JfUw.js
IP
Hash 22e59ddcd7a9cfeef0ca598e3af2536e
6801518b6189b8a14c5418b335f9b7ce0a52686b
b39758e5dcd779dfdaffd07a8084a5037f3f8f33167e2b0cb8b4331341eb2be0
GET /sp/2.18.2/Lk98JfUw.js HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Cookie: _ga_94QYBVSJNV=GS1.1.1662147403.1.0.1662147403.60.0.0; _ga=GA1.2.392760526.1662147404; _gid=GA1.2.706493816.1662147405; _dc_gtm_UA-28959768-20=1; _dc_gtm_UA-28959768-1=1; _fbp=fb.1.1662147404811.2050688717; _sgf_user_id=21072573950099457; _sgf_session_id=21072573950099456; _gcl_au=1.1.919884168.1662147405
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Mon, 22 Aug 2022 02:19:56 GMT
last-modified: Wed, 11 May 2022 13:33:25 GMT
etag: W/"595025034b65fd95a6547d58d743471a"
cache-control: public, max-age=315360000, immutable
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: IaQjdc_3sDVgJxkUDQ5d8V8RBFw5z9AO40Pwn6nEi1vkDg-AyAUbLQ==
age: 1012611
X-Firefox-Spdy: h2
tr.snapchat.com/cm/i?pid=b838e1c8-e5cb-4d99-bda2-d5594b71ff41&u_scsid=d6e52935-b9d8-4ab1-a37a-bd27a2ffb72d&u_sclid=430e920f-dd22-4c8d-93af-13468a8b5a7b
200 OK 0 B URL HTTP/2 tr.snapchat.com/cm/i?pid=b838e1c8-e5cb-4d99-bda2-d5594b71ff41&u_scsid=d6e52935-b9d8-4ab1-a37a-bd27a2ffb72d&u_sclid=430e920f-dd22-4c8d-93af-13468a8b5a7b
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm/i?pid=b838e1c8-e5cb-4d99-bda2-d5594b71ff41&u_scsid=d6e52935-b9d8-4ab1-a37a-bd27a2ffb72d&u_sclid=430e920f-dd22-4c8d-93af-13468a8b5a7b HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 19:36:47 GMT
content-type: text/html
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 0
x-envoy-upstream-service-time: 1
server: API Gateway
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tr.snapchat.com/init?pids=b838e1c8-e5cb-4d99-bda2-d5594b71ff41
200 OK 601 B URL HTTP/2 tr.snapchat.com/init?pids=b838e1c8-e5cb-4d99-bda2-d5594b71ff41
IP
Hash 9a5d5cadb6c1917a04e636af622ece64
fc8d03ba174d080cd55c1dbd59e22f20ad303145
bed0e93673145b61ae615467d8d01bf9551c0a9962e5f8569003fa92574972b5
GET /init?pids=b838e1c8-e5cb-4d99-bda2-d5594b71ff41 HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaviar.com/
Origin: https://flaviar.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 19:36:46 GMT
access-control-allow-origin: https://flaviar.com
content-type: application/json
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-envoy-upstream-service-time: 0
content-encoding: gzip
vary: Accept-Encoding
server: API Gateway
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 314 B IP
Hash 531f71248dd45b27e98cd4006c1db08d
da3b4206c8ff9ae895442065e88b2d9f5f5906d1
0a8f2a7799979ba531167f3a98c4a00e70159dde2653ebf0e4e0a4877c704670
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5091
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 19:36:47 GMT
Last-Modified: Fri, 02 Sep 2022 18:11:56 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 314
public.fbot.me/events/06cc9139-6a61-41fc-88db-9ec21e04eecf/profile/xhr
200 OK 2 B URL HTTP/2 public.fbot.me/events/06cc9139-6a61-41fc-88db-9ec21e04eecf/profile/xhr
IP
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
OPTIONS /events/06cc9139-6a61-41fc-88db-9ec21e04eecf/profile/xhr HTTP/1.1
Host: public.fbot.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: authorization,content-type
Referer: https://flaviar.com/
Origin: https://flaviar.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 19:36:47 GMT
content-length: 2
server: nginx/1.23.1
access-control-allow-origin: https://flaviar.com
access-control-allow-credentials: true
access-control-allow-methods: POST, GET
access-control-allow-headers: Authorization, Content-Type
info: {"connection":"upgrade","host":"public.fbot.me","x-forwarded-for":"91.90.42.154","x-forwarded-proto":"https","x-forwarded-port":"443","x-amzn-trace-id":"Root=1-63125b4e-1159bc2677fc3b5901893744","user-agent":"Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0","accept":"*/*","accept-language":"en-US,en;q=0.5","accept-encoding":"gzip, deflate, br","access-control-request-method":"POST","access-control-request-headers":"authorization,content-type","referer":"https://flaviar.com/","origin":"https://flaviar.com","sec-fetch-dest":"empty","sec-fetch-mode":"cors","sec-fetch-site":"cross-site"}
X-Firefox-Spdy: h2
dnacdn.net/dna
200 OK 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 19:36:46 GMT
server: Kestrel
content-length: 0
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=8b-HpF80M0RITmhlJTJCZkMwOUJGQlhaMUN2c3dTQXZDdG1LeUxLYzlLZCUyQlNpU2Q4S3BkVzQ3aGxzViUyRkhMRDhWN2J1U2xu; expires=Wed, 27 Sep 2023 19:36:47 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 295933
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
fbcapi.flaviar.com/events
200 OK 0 B URL HTTP/2 fbcapi.flaviar.com/events
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /events HTTP/1.1
Host: fbcapi.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 322
Origin: https://flaviar.com
Connection: keep-alive
Referer: https://flaviar.com/
Cookie: _ga_94QYBVSJNV=GS1.1.1662147403.1.0.1662147403.60.0.0; _ga=GA1.2.392760526.1662147404; _gid=GA1.2.706493816.1662147405; _dc_gtm_UA-28959768-20=1; _dc_gtm_UA-28959768-1=1; _fbp=fb.1.1662147404811.2050688717
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 19:36:47 GMT
content-length: 0
vary: origin
access-control-allow-credentials: true
access-control-allow-origin: https://flaviar.com
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 313 B IP
Hash 588f803eb3ec2b3213cc6a2d132615f0
3656f5e8a109223ebaf6b9dfd0bb7c81a19d88d7
5c00757b1158e2c99bd7a6f5ff033a109f7e06f7aa8bffc6562003ad354c8363
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3027
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 19:36:47 GMT
Last-Modified: Fri, 02 Sep 2022 18:46:20 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 313
dnacdn.net/dna
200 OK 442 B IP
Hash b718503e5d880bbcac13137ff55e2f5d
993f8997a5578ff931a62cb45d99f7c7fccb4ddd
f986acc7440a0733b34c85b518103870ac4ba45ee1628978e82f273efef03325
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Cookie: browser_data=8b-HpF80M0RITmhlJTJCZkMwOUJGQlhaMUN2c3dTQXZDdG1LeUxLYzlLZCUyQlNpU2Q4S3BkVzQ3aGxzViUyRkhMRDhWN2J1U2xu
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 19:36:47 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=S5Bofl80M0RITmhlJTJCZkMwOUJGQlhaMUN2c3dTQXZDdG1LeUxLYzlLZCUyQlNpU2Q4Sk5uUkZLeWl1WEhOV2VYWkVRVVRmVw; expires=Wed, 27 Sep 2023 19:36:47 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 5479651
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash be193db3ea82806b49751c08db9a921c
37426c599330224dd826ef89f7c5d6d565452742
23c86f82f0482ca917339a4285be57f4bc1736491d35ab7eef4ce9150d18cbce
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 02 Sep 2022 19:36:47 GMT
Last-Modified: Fri, 02 Sep 2022 18:47:33 GMT
Server: ECS (nyb/1D08)
X-Cache: Miss from cloudfront
Via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: dLKiZt0GXtWb3wlYLR3ZkoxUpic7LI3nFNsvebhwNMXI5qF9fE0NjQ==
Age: 2954
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash be193db3ea82806b49751c08db9a921c
37426c599330224dd826ef89f7c5d6d565452742
23c86f82f0482ca917339a4285be57f4bc1736491d35ab7eef4ce9150d18cbce
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 02 Sep 2022 19:36:47 GMT
Last-Modified: Fri, 02 Sep 2022 18:39:34 GMT
Server: ECS (nyb/1D1D)
X-Cache: Miss from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 02V_lUk3vtUkCX2MlpDG8h6K7Zt7riEtANQ5N-OWKubx7ze3BAyN6g==
Age: 3433
rb9yp8py.flaviar.com/assets/wxyz.rb.js
200 OK 10 kB URL HTTP/1.1 rb9yp8py.flaviar.com/assets/wxyz.rb.js
IP
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (347)
Hash 28da32c8a3559274180a454ca5231e08
37b980c1eaa6fb94ae0bea7ff55e2ccbb6319ae7
6e9d6535db0d92b4bf9c7263eafa6fd552da77999bd86eb5e2f0e3d97aeebc62
GET /assets/wxyz.rb.js HTTP/1.1
Host: rb9yp8py.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaviar.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: openresty
Date: Fri, 02 Sep 2022 19:36:47 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip
dynamic.criteo.com/js/ld/ld.js?a=95340
200 OK 15 kB URL HTTP/2 dynamic.criteo.com/js/ld/ld.js?a=95340
IP
File type ASCII text, with very long lines (42898)
Hash aa9b0929884f32bea11edc0820e58b8b
b21c9283303441153bb98c2e577d3cbd4243f8f7
8daa7886c8e62535ab41b9b27a9c8590ff9a8d9d6a8f931b70526a2ef07a7143
GET /js/ld/ld.js?a=95340 HTTP/1.1
Host: dynamic.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 19:36:46 GMT
content-type: application/javascript; charset=utf-8
server: Kestrel
cache-control: public,max-age=10800
content-encoding: br
vary: Origin, Accept-Encoding
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
gem.gbc.criteo.com/newidsd
200 OK 511 B URL HTTP/2 gem.gbc.criteo.com/newidsd
IP
Hash 100e7fab4d237694e1a2d7f513a8608a
ec52de38e55893a7852fcd45d3af43407b5696c2
2597f2cc7a9902607c64ff57ce7eeafc8e851f6d56349afe95c0dc8f69412981
GET /newidsd HTTP/1.1
Host: gem.gbc.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 19:36:47 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 96725
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
ag.gbc.criteo.com/newidsd
200 OK 403 B URL HTTP/2 ag.gbc.criteo.com/newidsd
IP
Hash 7105b40214d03c9b8a737bbaabc5a65c
dd53a69226bf4bf7b9b28e2c5373b36c2af8f4fd
e7bd8e8f78f4db1693b19b032c265e90105a6f0a556619d07d434020381a8beb
GET /newidsd HTTP/1.1
Host: ag.gbc.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 19:36:47 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 112909
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
rb9yp8py.flaviar.com/integrations?source=flaviar
200 OK 53 B URL HTTP/1.1 rb9yp8py.flaviar.com/integrations?source=flaviar
IP
ASN #14061 DIGITALOCEAN-ASN
Hash 6036047f3a8afb3464178fcb310acb8a
21d2f745cad28b8687aa0f6c86711aecb9687630
9db81c60b956775e79980f3420f5f63697e4969fda7ce9b3c027a8fdab4c210b
GET /integrations?source=flaviar HTTP/1.1
Host: rb9yp8py.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Cookie: _ga_94QYBVSJNV=GS1.1.1662147403.1.0.1662147403.60.0.0; _ga=GA1.2.392760526.1662147404; _gid=GA1.2.706493816.1662147405; _dc_gtm_UA-28959768-20=1; _dc_gtm_UA-28959768-1=1; _fbp=fb.1.1662147404811.2050688717; _sgf_user_id=21072573950099457; _sgf_session_id=21072573950099456; _gcl_au=1.1.919884168.1662147405; _rdt_uuid=1662147405245.60a7d790-c818-47d2-8ab7-794d932b16f4; _scid=a3badab3-85a9-49d4-9ee7-3c6cad91d190; cto_bundle=yWAMLF9mM0pmdkx5ZU9SZlpPWmlYRjE5VGNDRlhIZGo5Y2NuTVZNeFBIbHZ3N2J6Vm42S2Rma0tjNGZxcGNJeUVQYVY1eWJqUHV4NzBpM1VmeUlGS0pnNW0wTkxIMFRDbiUyRjhlRzBJVVM0ZnQlMkJaQmxJJTJCWUp2eUozMXRKOCUyRm1tYWlUaUVXMVBFcTNzaHdzMDJydGx4T1Z2dlgwQSUzRCUzRA
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: openresty
Date: Fri, 02 Sep 2022 19:36:47 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash dc076b754adaddcb000f3f987b6c5df2
01e9b40591692b8b2a6a94729e9481c7e600d248
9dbf2e71e1cbad91a71154b729e8ef496eda7544828a8bfd4f64e6dd70c4f64d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 19:36:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/landing?gcs=G111&rnd=810647298.1662147405&url=https%3A%2F%2Fflaviar.com%2F>m=2wg8v0K4F6SWQ&auid=919884168.1662147405
200 OK 42 B URL HTTP/2 googleads.g.doubleclick.net/pagead/landing?gcs=G111&rnd=810647298.1662147405&url=https%3A%2F%2Fflaviar.com%2F>m=2wg8v0K4F6SWQ&auid=919884168.1662147405
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/landing?gcs=G111&rnd=810647298.1662147405&url=https%3A%2F%2Fflaviar.com%2F>m=2wg8v0K4F6SWQ&auid=919884168.1662147405 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaviar.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 02 Sep 2022 19:36:47 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 02-Sep-2022 19:51:47 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
api.sail-personalize.com/v1/personalize/simple?pageviews=1&isMobile=0
200 OK 195 B URL HTTP/2 api.sail-personalize.com/v1/personalize/simple?pageviews=1&isMobile=0
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash b2b15b88dd862073160aaf06ec8121f2
933fc1c81bb88590636e50bbda2857a9e436c9ef
049c9cb36c65f1a460d92dc8f7f7d5ead967441400e95f03f13cf081ae744b51
GET /v1/personalize/simple?pageviews=1&isMobile=0 HTTP/1.1
Host: api.sail-personalize.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaviar.com/
authorization: Bearer 65de79281e7de94b00f804e81e0d65c0
content-type: application/json
x-lib-version: v1.0.1
x-referring-url: https://flaviar.com/
Origin: https://flaviar.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 19:36:47 GMT
content-type: application/json
content-length: 195
access-control-allow-origin: *
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-store
expires: -1
allowedheaders: Content-Type,Authorization,X-Requested-With,Content-Length,Accept,Origin
allowedorigins: *
allowedmethods: GET,OPTIONS
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
rb9yp8py.flaviar.com/v2/rb?url=https%3A%2F%2Fflaviar.com%2F&action=view&source=flaviar&rb_source=flaviar&script_version=wxyz.rb.js&sessionId=194b5207-d29f-4d8f-be98-3f4c785536f0&uid=rbos-9191b258-ead4-4635-8969-0f301664f3f0
200 OK 44 B URL HTTP/1.1 rb9yp8py.flaviar.com/v2/rb?url=https%3A%2F%2Fflaviar.com%2F&action=view&source=flaviar&rb_source=flaviar&script_version=wxyz.rb.js&sessionId=194b5207-d29f-4d8f-be98-3f4c785536f0&uid=rbos-9191b258-ead4-4635-8969-0f301664f3f0
IP
ASN #14061 DIGITALOCEAN-ASN
File type GIF image data, version 89a, 1 x 1\012- data
Hash 75e9566b8523b76993b790444d697848
46bcf0fe72739cd1bc11b7d525d6fdaf4533a845
039a8bb6d736466063dde3c2a80d71d54456a7875cb1654263058bc69c1c042d
GET /v2/rb?url=https%3A%2F%2Fflaviar.com%2F&action=view&source=flaviar&rb_source=flaviar&script_version=wxyz.rb.js&sessionId=194b5207-d29f-4d8f-be98-3f4c785536f0&uid=rbos-9191b258-ead4-4635-8969-0f301664f3f0 HTTP/1.1
Host: rb9yp8py.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Cookie: _ga_94QYBVSJNV=GS1.1.1662147403.1.0.1662147403.60.0.0; _ga=GA1.2.392760526.1662147404; _gid=GA1.2.706493816.1662147405; _dc_gtm_UA-28959768-20=1; _dc_gtm_UA-28959768-1=1; _fbp=fb.1.1662147404811.2050688717; _sgf_user_id=21072573950099457; _sgf_session_id=21072573950099456; _gcl_au=1.1.919884168.1662147405; _rdt_uuid=1662147405245.60a7d790-c818-47d2-8ab7-794d932b16f4; _scid=a3badab3-85a9-49d4-9ee7-3c6cad91d190; cto_bundle=yWAMLF9mM0pmdkx5ZU9SZlpPWmlYRjE5VGNDRlhIZGo5Y2NuTVZNeFBIbHZ3N2J6Vm42S2Rma0tjNGZxcGNJeUVQYVY1eWJqUHV4NzBpM1VmeUlGS0pnNW0wTkxIMFRDbiUyRjhlRzBJVVM0ZnQlMkJaQmxJJTJCWUp2eUozMXRKOCUyRm1tYWlUaUVXMVBFcTNzaHdzMDJydGx4T1Z2dlgwQSUzRCUzRA; rbuid=rbos-9191b258-ead4-4635-8969-0f301664f3f0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: openresty
Date: Fri, 02 Sep 2022 19:36:47 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: rbuid=rbos-9191b258-ead4-4635-8969-0f301664f3f0; domain=flaviar.com; path=/;Max-Age=2592000; SameSite=None; Secure
gandalf-eu.segmentify.com//add/events/v1.json?apiKey=06e2e4b6-5e17-4dbf-9574-c462c3d742d7
200 OK 0 B URL HTTP/1.1 gandalf-eu.segmentify.com//add/events/v1.json?apiKey=06e2e4b6-5e17-4dbf-9574-c462c3d742d7
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS //add/events/v1.json?apiKey=06e2e4b6-5e17-4dbf-9574-c462c3d742d7 HTTP/1.1
Host: gandalf-eu.segmentify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-sfy-api-key
Referer: https://flaviar.com/
Origin: https://flaviar.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Headers: Content-Type, Accept, Authorization, X-Switch-User, X-Switch-Account, X-Switch-Region, X-Sfy-Api-Key
Access-Control-Allow-Methods: GET, POST, PUT, DELETE
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 3600
Connection: keep-alive
Content-Length: 0
Content-Type: application/json
Date: Fri, 02 Sep 2022 19:36:47 GMT
Server: nginx
X-Server-Name: 399674c60029ffe99fbcb3b4975d245d
amplify.outbrain.com/cp/obtp.js
200 OK 3.2 kB URL HTTP/1.1 amplify.outbrain.com/cp/obtp.js
IP
File type ASCII text, with very long lines (8072), with no line terminators
Hash 9b19340ef7db3cbb26aa923adb8dbe6e
082e699bca6e80ca6c72a43f2894f4a32e785e26
c042b8b199b2c08fa66f90753998544860e3f64c3a1f47754a66970b3b8c5b2a
GET /cp/obtp.js HTTP/1.1
Host: amplify.outbrain.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "51de2e10510f823326f9b30ea6068a2a:1655820557.452892"
Last-Modified: Tue, 21 Jun 2022 14:06:31 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1200
Expires: Fri, 02 Sep 2022 19:56:47 GMT
Date: Fri, 02 Sep 2022 19:36:47 GMT
Content-Length: 3249
Connection: keep-alive
static.ads-twitter.com/uwt.js
200 OK 15 kB URL HTTP/2 static.ads-twitter.com/uwt.js
IP
File type ASCII text, with very long lines (57443), with no line terminators
Hash 1e9c4d503a9e162d8b549dc3d9c040e2
1fa99d7d7e878cdd45567af4b0c3c65542036c1d
f936c0124c595fe5d0c7858277f3a5f3bd104de39d36ac92557501fa1dec8563
GET /uwt.js HTTP/1.1
Host: static.ads-twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 30 Aug 2022 20:19:10 GMT
cache-control: no-cache
content-type: application/javascript; charset=utf-8
content-encoding: gzip
etag: "d4de8398858246712016031c834bb061+gzip+gzip"
accept-ranges: bytes
date: Fri, 02 Sep 2022 19:36:47 GMT
x-served-by: cache-iad-kiad7000147-IAD, cache-bma1639-BMA
x-cache: HIT, HIT
vary: Accept-Encoding,Host
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT
content-length: 15317
X-Firefox-Spdy: h2
bat.bing.com/bat.js
200 OK 11 kB IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (38826), with no line terminators
Hash 293ae3e0fc8b0d5c143fdf9d8490228d
3976c659b908e70818a3a1ac71860b497fe2d1a9
04a840d967ae836e14179bde574cabf14a1fc871182ca0f8193e7a0b06c727ab
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11367
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 28 Jul 2022 17:32:37 GMT
accept-ranges: bytes
etag: "80a8697a8a2d81:0"
vary: Accept-Encoding
set-cookie: MUID=3E86FF78B10C61802FDDED6BB0F960E1; domain=.bing.com; expires=Wed, 27-Sep-2023 19:36:47 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 4CB6185AD8014CC89224B104F42210C7 Ref B: OSL30EDGE0215 Ref C: 2022-09-02T19:36:47Z
date: Fri, 02 Sep 2022 19:36:47 GMT
X-Firefox-Spdy: h2
gandalf-eu.segmentify.com//add/events/v1.json?apiKey=06e2e4b6-5e17-4dbf-9574-c462c3d742d7
200 7.9 kB URL HTTP/1.1 gandalf-eu.segmentify.com//add/events/v1.json?apiKey=06e2e4b6-5e17-4dbf-9574-c462c3d742d7
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type JSON data\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (33854), with no line terminators
Hash af9c59cc2dfae8844f4dc015285ffa7d
6c4b2ebd7ea6e23ed9980f45b85d22ba9c7ec744
67f24f8de4237c58859048098f2ea58a96ff2ea939d7495d607996d4c3a3cb0b
POST //add/events/v1.json?apiKey=06e2e4b6-5e17-4dbf-9574-c462c3d742d7 HTTP/1.1
Host: gandalf-eu.segmentify.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
X-Sfy-Api-Key: 06e2e4b6-5e17-4dbf-9574-c462c3d742d7
Content-Length: 1081
Origin: https://flaviar.com
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Access-Control-Allow-Origin: *
Connection: keep-alive
Content-Encoding: br
Content-Type: application/json;charset=UTF-8
Date: Fri, 02 Sep 2022 19:36:47 GMT
Server: nginx
Transfer-Encoding: chunked
X-Server-Name: e50eafe57688af3a47ec4fb3140ed864
getrockerbox.com/customdomain/rb9yp8py.flaviar.com/wxyz.rb.js
301 Moved Permanently 182 B URL HTTP/2 getrockerbox.com/customdomain/rb9yp8py.flaviar.com/wxyz.rb.js
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash b9d44ae5ca75a352070be23a6e9c70f6
a3aa893ef50506ec0f1fdf60ccfbf5e48f142e81
e3631af1efa5be63f728619833a5a8a23a1f72ca40d6f6b6c71d80bca51975c0
GET /customdomain/rb9yp8py.flaviar.com/wxyz.rb.js HTTP/1.1
Host: getrockerbox.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Fri, 02 Sep 2022 19:36:46 GMT
content-type: text/html
location: https://rb9yp8py.flaviar.com/assets/wxyz.rb.js
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5AhcLL4hvO%2Fn2A2tmvhi8o6S2x5qDb9s%2FqlNWpoZSjJKTKKnKEmDWRUFGUguVjyorvgpOiXGaLyNQwxUNnvX8XrNoqKv2UvR1mOcdyV2Y9FzEK%2Bk2vps0YgG1TCFYdlxAnEM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7448b24c2f4bb500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fbcapi.flaviar.com/events
200 OK 0 B URL HTTP/2 fbcapi.flaviar.com/events
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /events HTTP/1.1
Host: fbcapi.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1883
Origin: https://flaviar.com
Connection: keep-alive
Referer: https://flaviar.com/
Cookie: _ga_94QYBVSJNV=GS1.1.1662147403.1.0.1662147403.60.0.0; _ga=GA1.2.392760526.1662147404; _gid=GA1.2.706493816.1662147405; _dc_gtm_UA-28959768-20=1; _dc_gtm_UA-28959768-1=1; _fbp=fb.1.1662147404811.2050688717; _sgf_user_id=21072573950099457; _sgf_session_id=21072573950099456; _gcl_au=1.1.919884168.1662147405; _rdt_uuid=1662147405245.60a7d790-c818-47d2-8ab7-794d932b16f4; _scid=a3badab3-85a9-49d4-9ee7-3c6cad91d190; cto_bundle=yWAMLF9mM0pmdkx5ZU9SZlpPWmlYRjE5VGNDRlhIZGo5Y2NuTVZNeFBIbHZ3N2J6Vm42S2Rma0tjNGZxcGNJeUVQYVY1eWJqUHV4NzBpM1VmeUlGS0pnNW0wTkxIMFRDbiUyRjhlRzBJVVM0ZnQlMkJaQmxJJTJCWUp2eUozMXRKOCUyRm1tYWlUaUVXMVBFcTNzaHdzMDJydGx4T1Z2dlgwQSUzRCUzRA; rbuid=rbos-9191b258-ead4-4635-8969-0f301664f3f0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 19:36:47 GMT
content-length: 0
vary: origin
access-control-allow-credentials: true
access-control-allow-origin: https://flaviar.com
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
cdn.flaviar.com/build/images/logos/flaviar.d834b8fc.svg
200 OK 2.8 kB URL HTTP/2 cdn.flaviar.com/build/images/logos/flaviar.d834b8fc.svg
IP
Hash 152d152e13598de4109964b5fca248b1
7d942ab3d55b47c80f745fb272826a955de41b24
3e2806ba6b33302d7dbb94f6f83f01bfb1ee628c1677ca4516fdf64043efc921
GET /build/images/logos/flaviar.d834b8fc.svg HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Cookie: _ga_94QYBVSJNV=GS1.1.1662147403.1.0.1662147403.60.0.0; _ga=GA1.2.392760526.1662147404; _gid=GA1.2.706493816.1662147405; _dc_gtm_UA-28959768-20=1; _dc_gtm_UA-28959768-1=1; _fbp=fb.1.1662147404811.2050688717
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
date: Fri, 29 Jul 2022 06:18:33 GMT
last-modified: Mon, 25 Jul 2022 08:05:50 GMT
etag: W/"bffec1c9b2cf2687181fc865bca3a631-1"
cache-control: public, max-age=3888000, immutable
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 56sCCt3FY3TZxUWg3DbXTZGiDcgmcxtxXypwPy3mzIUuQErGEMngsA==
age: 3071894
X-Firefox-Spdy: h2
alb.reddit.com/rp.gif?ts=1662147405246&id=t2_h2e6q&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=60a7d790-c818-47d2-8ab7-794d932b16f4&aaid=&em=&external_id=&idfa=&integration=gtm&opt_out=0&sh=1280&sw=1024&v=rdt_02c59ad6
200 OK 42 B URL HTTP/2 alb.reddit.com/rp.gif?ts=1662147405246&id=t2_h2e6q&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=60a7d790-c818-47d2-8ab7-794d932b16f4&aaid=&em=&external_id=&idfa=&integration=gtm&opt_out=0&sh=1280&sw=1024&v=rdt_02c59ad6
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /rp.gif?ts=1662147405246&id=t2_h2e6q&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=60a7d790-c818-47d2-8ab7-794d932b16f4&aaid=&em=&external_id=&idfa=&integration=gtm&opt_out=0&sh=1280&sw=1024&v=rdt_02c59ad6 HTTP/1.1
Host: alb.reddit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Varnish
retry-after: 0
cross-origin-resource-policy: cross-origin
content-type: image/gif
accept-ranges: bytes
date: Fri, 02 Sep 2022 19:36:47 GMT
via: 1.1 varnish
content-length: 42
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 312 B IP
Hash 278f77bd8c68daed840ff7c0e2805feb
197f07c43b559537996083243e9c6a1a4848562e
62d0683d0f26e7cfdb52f6cfbe565147f592d509c71222499ec4cd5303d04318
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3628
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 19:36:47 GMT
Last-Modified: Fri, 02 Sep 2022 18:36:19 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 312
ocsp.digicert.com/
200 OK 312 B IP
Hash 278f77bd8c68daed840ff7c0e2805feb
197f07c43b559537996083243e9c6a1a4848562e
62d0683d0f26e7cfdb52f6cfbe565147f592d509c71222499ec4cd5303d04318
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4997
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 19:36:47 GMT
Last-Modified: Fri, 02 Sep 2022 18:13:31 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 312
t.co/i/adsct?bci=3&eci=2&event_id=1cd66205-edcd-428d-b377-ce621b008de6&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=e56fa671-4569-4cdb-8609-df097057ec3d&tw_document_href=https%3A%2F%2Fflaviar.com%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nv73t&type=javascript&version=2.3.27
200 OK 43 B URL HTTP/2 t.co/i/adsct?bci=3&eci=2&event_id=1cd66205-edcd-428d-b377-ce621b008de6&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=e56fa671-4569-4cdb-8609-df097057ec3d&tw_document_href=https%3A%2F%2Fflaviar.com%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nv73t&type=javascript&version=2.3.27
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=1cd66205-edcd-428d-b377-ce621b008de6&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=e56fa671-4569-4cdb-8609-df097057ec3d&tw_document_href=https%3A%2F%2Fflaviar.com%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nv73t&type=javascript&version=2.3.27 HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 19:36:47 GMT
server: tsa_o
set-cookie: muc_ads=cf7ed619-d33d-420c-9851-d616acbf4de2; Max-Age=63072000; Expires=Sun, 01 Sep 2024 19:36:47 GMT; Path=/; Domain=t.co; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
strict-transport-security: max-age=0
x-response-time: 104
x-connection-hash: 1f6f82acfb834b403a5a8a3fdadfad8954dbba9e05fc70117f8be4d3e457b495
X-Firefox-Spdy: h2
t.co/i/adsct?bci=3&eci=2&event_id=641893ae-3eb3-4102-ba56-2fea15a48157&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=e56fa671-4569-4cdb-8609-df097057ec3d&tw_document_href=https%3A%2F%2Fflaviar.com%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nv73t&type=javascript&version=2.3.27
200 OK 43 B URL HTTP/2 t.co/i/adsct?bci=3&eci=2&event_id=641893ae-3eb3-4102-ba56-2fea15a48157&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=e56fa671-4569-4cdb-8609-df097057ec3d&tw_document_href=https%3A%2F%2Fflaviar.com%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nv73t&type=javascript&version=2.3.27
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=641893ae-3eb3-4102-ba56-2fea15a48157&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=e56fa671-4569-4cdb-8609-df097057ec3d&tw_document_href=https%3A%2F%2Fflaviar.com%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nv73t&type=javascript&version=2.3.27 HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 19:36:47 GMT
server: tsa_o
set-cookie: muc_ads=18d34968-17a9-451c-b0f3-2a19f0b16b5a; Max-Age=63072000; Expires=Sun, 01 Sep 2024 19:36:47 GMT; Path=/; Domain=t.co; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
strict-transport-security: max-age=0
x-response-time: 112
x-connection-hash: 1f6f82acfb834b403a5a8a3fdadfad8954dbba9e05fc70117f8be4d3e457b495
X-Firefox-Spdy: h2
ocsp.godaddy.com/
200 OK 1.9 kB IP
Hash 1cc64e10ae74b6ecd4cdf69bcbf68fae
4c695d897ba2e589e98d98021f768c62c6535abc
6dd23bdd2438cd94f5d7ffc6ff1dfe773f537a9187873457c8080f347e545575
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 02 Sep 2022 19:36:48 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 02 Sep 2022 03:45:25 GMT
Expires: Sat, 03 Sep 2022 03:45:25 GMT
ETag: "c2a643ee165dfc37316c893e9e154410e0191bf2"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
bat.bing.com/action/0?ti=5715081&tm=gtm002&Ver=2&mid=471d6c95-7827-4afd-a6c6-c6adde543b6f&sid=94a2b3d02af611ed8790e5ffd7032664&vid=94a2e3102af611ed8d28fd1a54e023c2&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Flaviar%20Membership%20%C2%BB%20Fine%20Spirits%20%26%20Whiskey%20Club%20%F0%9F%A5%83%20-%20Flaviar&p=https%3A%2F%2Fflaviar.com%2F&r=<=3171&evt=pageLoad&sv=1&rn=352960
204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=5715081&tm=gtm002&Ver=2&mid=471d6c95-7827-4afd-a6c6-c6adde543b6f&sid=94a2b3d02af611ed8790e5ffd7032664&vid=94a2e3102af611ed8d28fd1a54e023c2&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Flaviar%20Membership%20%C2%BB%20Fine%20Spirits%20%26%20Whiskey%20Club%20%F0%9F%A5%83%20-%20Flaviar&p=https%3A%2F%2Fflaviar.com%2F&r=<=3171&evt=pageLoad&sv=1&rn=352960
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=5715081&tm=gtm002&Ver=2&mid=471d6c95-7827-4afd-a6c6-c6adde543b6f&sid=94a2b3d02af611ed8790e5ffd7032664&vid=94a2e3102af611ed8d28fd1a54e023c2&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Flaviar%20Membership%20%C2%BB%20Fine%20Spirits%20%26%20Whiskey%20Club%20%F0%9F%A5%83%20-%20Flaviar&p=https%3A%2F%2Fflaviar.com%2F&r=<=3171&evt=pageLoad&sv=1&rn=352960 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=0192DE2BF6446EFB2D7BCC38F7B16F8B; domain=.bing.com; expires=Wed, 27-Sep-2023 19:36:48 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 1994E2C1A85947D7BE04C29A46EAF662 Ref B: OSL30EDGE0215 Ref C: 2022-09-02T19:36:48Z
date: Fri, 02 Sep 2022 19:36:47 GMT
X-Firefox-Spdy: h2
gum.criteo.com/syncframe?topUrl=flaviar.com&origin=onetag&us_privacy=1---
200 OK 5.3 kB URL HTTP/2 gum.criteo.com/syncframe?topUrl=flaviar.com&origin=onetag&us_privacy=1---
IP
Hash 4317cbf1c4feadb2ae91b5f8eb1a751d
44121b2ac497a6a476d0fda86efdbb77744041b8
0e1bfa5e12d51cd7ee7312d1553af6290098442fad36bd78d25263718a8e074f
GET /syncframe?topUrl=flaviar.com&origin=onetag&us_privacy=1--- HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 19:36:46 GMT
content-type: text/html; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
set-cookie: uid=dfed2396-36b7-4afd-bd9b-26fea486bd98; expires=Wed, 27 Sep 2023 19:36:46 GMT; domain=.criteo.com; path=/; secure; samesite=none
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 608166
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 313 B IP
Hash 119321cec5bc6c45fd28bd83e37ee2b5
2653dfa7c06e7b93dd234d725c9314fe000e149d
7af660dbbbc59de8b7fd1b630f465cb2362a3c72430ab96c752e385765b965ef
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5072
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 19:36:48 GMT
Last-Modified: Fri, 02 Sep 2022 18:12:16 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 313
bat.bing.com/p/action/5715081.js
200 OK 666 B URL HTTP/2 bat.bing.com/p/action/5715081.js
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with CRLF line terminators
Hash 33b8caac0fcd4a9ae2b69138447bb7ab
d24395f68fb3c444105b986e1f2d2b7a33b906fe
0a9a1cb18c4585576a9aea356ccc9160b9cd0e2d2f9bb67afcf1b6dfd4f17647
GET /p/action/5715081.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: private,max-age=60
content-length: 666
content-type: application/javascript; charset=utf-8
content-encoding: gzip
vary: Accept-Encoding
set-cookie: MUID=0FD226963588622222823485347D6355; domain=.bing.com; expires=Wed, 27-Sep-2023 19:36:48 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 3490A0DB9C9E431C91BCED190C7BAD19 Ref B: OSL30EDGE0215 Ref C: 2022-09-02T19:36:48Z
date: Fri, 02 Sep 2022 19:36:47 GMT
X-Firefox-Spdy: h2
status.thawte.com/
200 OK 471 B IP
Hash 506414771012d05639eb98a64229a907
99df1c506cbba5747703322db153a6d8533da530
29a308d21127e9f9c43e48d778c55ea3a485cd5876fa26f04f2f18b00904c1b8
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3399
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 19:36:48 GMT
Last-Modified: Fri, 02 Sep 2022 18:40:09 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
status.thawte.com/
200 OK 471 B IP
Hash 506414771012d05639eb98a64229a907
99df1c506cbba5747703322db153a6d8533da530
29a308d21127e9f9c43e48d778c55ea3a485cd5876fa26f04f2f18b00904c1b8
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 776
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 19:36:48 GMT
Last-Modified: Fri, 02 Sep 2022 19:23:52 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=1cd66205-edcd-428d-b377-ce621b008de6&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=e56fa671-4569-4cdb-8609-df097057ec3d&tw_document_href=https%3A%2F%2Fflaviar.com%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nv73t&type=javascript&version=2.3.27
200 OK 43 B URL HTTP/2 analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=1cd66205-edcd-428d-b377-ce621b008de6&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=e56fa671-4569-4cdb-8609-df097057ec3d&tw_document_href=https%3A%2F%2Fflaviar.com%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nv73t&type=javascript&version=2.3.27
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=1cd66205-edcd-428d-b377-ce621b008de6&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=e56fa671-4569-4cdb-8609-df097057ec3d&tw_document_href=https%3A%2F%2Fflaviar.com%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nv73t&type=javascript&version=2.3.27 HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 19:36:47 GMT
server: tsa_o
set-cookie: personalization_id="v1_2FSJ6T9XWqxG6pYBRf4vBg=="; Max-Age=63072000; Expires=Sun, 01 Sep 2024 19:36:48 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
strict-transport-security: max-age=631138519
x-response-time: 104
x-connection-hash: c05d612cb14645254885ca98f463031ef204ad2820a21f72f1cb302b1e5d93dd
X-Firefox-Spdy: h2
analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=641893ae-3eb3-4102-ba56-2fea15a48157&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=e56fa671-4569-4cdb-8609-df097057ec3d&tw_document_href=https%3A%2F%2Fflaviar.com%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nv73t&type=javascript&version=2.3.27
200 OK 43 B URL HTTP/2 analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=641893ae-3eb3-4102-ba56-2fea15a48157&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=e56fa671-4569-4cdb-8609-df097057ec3d&tw_document_href=https%3A%2F%2Fflaviar.com%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nv73t&type=javascript&version=2.3.27
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=641893ae-3eb3-4102-ba56-2fea15a48157&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=e56fa671-4569-4cdb-8609-df097057ec3d&tw_document_href=https%3A%2F%2Fflaviar.com%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nv73t&type=javascript&version=2.3.27 HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 19:36:48 GMT
server: tsa_o
set-cookie: personalization_id="v1_Kj+mdJoOSBq3iq9T+jQE4w=="; Max-Age=63072000; Expires=Sun, 01 Sep 2024 19:36:48 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
strict-transport-security: max-age=631138519
x-response-time: 101
x-connection-hash: c05d612cb14645254885ca98f463031ef204ad2820a21f72f1cb302b1e5d93dd
X-Firefox-Spdy: h2
public.fbot.me/events/06cc9139-6a61-41fc-88db-9ec21e04eecf/profile/xhr
200 OK 514 B URL HTTP/2 public.fbot.me/events/06cc9139-6a61-41fc-88db-9ec21e04eecf/profile/xhr
IP
File type JSON data\012- , ASCII text, with very long lines (514), with no line terminators
Hash a9d229d2aa2abfea7457a9c65c46829c
decdf342777fcceba94e9dbf6ad248b348dd81e1
b0674fdac700481156d689274a6afa73f9833e83283dcfdfd06045731ba85179
POST /events/06cc9139-6a61-41fc-88db-9ec21e04eecf/profile/xhr HTTP/1.1
Host: public.fbot.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaviar.com/
Authorization:
Content-Type: application/json
Origin: https://flaviar.com
Content-Length: 215
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 19:36:48 GMT
content-type: application/json
content-length: 514
server: nginx/1.23.1
access-control-allow-origin: https://flaviar.com
set-cookie: globalId=875ac783-2817-4791-9c30-2a89df570f84; Max-Age=315360000; Domain=.fbot.me; Path=/; HttpOnly; Secure; SameSite=None
access-control-allow-credentials: true
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 312 B IP
Hash 3a43a8209b440a287d8cdebd8d5a1f1e
92049e2bb51e2a95535ed00f7396afb52c3793ce
e3b39bd074b0b554d7214522294e7eea2f1f21b81b8523325d1320a3eeeb9578
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6391
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 19:36:48 GMT
Last-Modified: Fri, 02 Sep 2022 17:50:17 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 312
tr.outbrain.com/unifiedPixel?marketerId=00cf895e7b627a414bdcc05c54e01b7ae7&obApiVersion=1.1&obtpVersion=1.8.2&name=Pageview&dl=https%3A%2F%2Fflaviar.com%2F&optOut=false&bust=05809223668525935&referrer=
200 OK 60 B URL HTTP/1.1 tr.outbrain.com/unifiedPixel?marketerId=00cf895e7b627a414bdcc05c54e01b7ae7&obApiVersion=1.1&obtpVersion=1.8.2&name=Pageview&dl=https%3A%2F%2Fflaviar.com%2F&optOut=false&bust=05809223668525935&referrer=
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash fb0fc5c090282e372b8bf8ff13ae3ee2
2de3834253ece606ce4d2a6f10a59654b6fa378b
90a8ffa59ad6227daafa10083d4cff2e9b295c9c82135b5f5cedd65b2e7c8ceb
GET /unifiedPixel?marketerId=00cf895e7b627a414bdcc05c54e01b7ae7&obApiVersion=1.1&obtpVersion=1.8.2&name=Pageview&dl=https%3A%2F%2Fflaviar.com%2F&optOut=false&bust=05809223668525935&referrer= HTTP/1.1
Host: tr.outbrain.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 19:36:48 GMT
Content-Type: image/gif;
Content-Length: 60
Cache-Control: no-cache
X-TraceId: 40dbde200bfc7715a01c7853d236feb7
content-encoding: gzip
tr.outbrain.com/cachedClickId?marketerId=00cf895e7b627a414bdcc05c54e01b7ae7
200 OK 56 B URL HTTP/1.1 tr.outbrain.com/cachedClickId?marketerId=00cf895e7b627a414bdcc05c54e01b7ae7
IP
File type ASCII text, with no line terminators
Hash 77fbe8ab311fa20557d95906363035ed
5806df80f09a37e070d5f37c49f19797c2763fd0
4fa9f4ca5bfa56b9f8467324e3654f4a717dcd40b70c05b538092d8a101b0599
GET /cachedClickId?marketerId=00cf895e7b627a414bdcc05c54e01b7ae7 HTTP/1.1
Host: tr.outbrain.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 19:36:48 GMT
Content-Type: application/javascript
Content-Length: 56
X-TraceId: f1f45bb749021314b4434c5c836322cd
content-encoding: gzip
cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc&google_ula=913071&CriteoUserId=k-1syu6nDdyYKTgxDMIasvKMKjdtgP4o2eHavqTA&google_cm&google_hm=ay0xc3l1Nm5EZHlZS1RneERNSWFzdktNS2pkdGdQNG8yZUhhdnFUQQ
302 Found 440 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc&google_ula=913071&CriteoUserId=k-1syu6nDdyYKTgxDMIasvKMKjdtgP4o2eHavqTA&google_cm&google_hm=ay0xc3l1Nm5EZHlZS1RneERNSWFzdktNS2pkdGdQNG8yZUhhdnFUQQ
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 8364720a06d412f6cf05a2f6092c9cdb
44ea61eb4fa5da8899adf8c66828caa97f3df0a5
cafcb1fa68caee17092a3f20f150f7de64c9c7fc86288d06a032793ed4dc724d
GET /pixel?google_nid=cjp&google_sc&google_ula=913071&CriteoUserId=k-1syu6nDdyYKTgxDMIasvKMKjdtgP4o2eHavqTA&google_cm&google_hm=ay0xc3l1Nm5EZHlZS1RneERNSWFzdktNS2pkdGdQNG8yZUhhdnFUQQ HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
location: https://cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-1syu6nDdyYKTgxDMIasvKMKjdtgP4o2eHavqTA&google_cm=&google_hm=ay0xc3l1Nm5EZHlZS1RneERNSWFzdktNS2pkdGdQNG8yZUhhdnFUQQ&google_tc=
date: Fri, 02 Sep 2022 19:36:48 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 440
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 02-Sep-2022 19:51:48 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-klwtMnDdyYKTgxDMIasvKMKjdtiWq3edwFTDuA
302 Found 0 B URL HTTP/2 r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-klwtMnDdyYKTgxDMIasvKMKjdtiWq3edwFTDuA
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rum?cm_dsp_id=20&external_user_id=k-klwtMnDdyYKTgxDMIasvKMKjdtiWq3edwFTDuA HTTP/1.1
Host: r.casalemedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 02 Sep 2022 19:36:48 GMT
content-length: 0
location: /rum?cm_dsp_id=20&external_user_id=k-klwtMnDdyYKTgxDMIasvKMKjdtiWq3edwFTDuA&C=1
cf-ray: 7448b258781a1c0a-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
pragma: no-cache
set-cookie: CMID=YxJbUNytJfiTwGuutpaV7wAA; Path=/; Domain=casalemedia.com; Expires=Sat, 02 Sep 2023 19:36:48 GMT; Max-Age=31536000; Secure; SameSite=None
CMPS=4365; Path=/; Domain=casalemedia.com; Expires=Thu, 01 Dec 2022 19:36:48 GMT; Max-Age=7776000; Secure; SameSite=None
CMPRO=4365; Path=/; Domain=casalemedia.com; Expires=Thu, 01 Dec 2022 19:36:48 GMT; Max-Age=7776000; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MnQJ3ZDQXOEufYP8hwzEuzCiNBT5ak1KQsthiaTjk6pAPtU643jCssNqkB9csPuxQ%2B0ys9YMhGQCH%2BQ4FYRJTBdCm5nrdpv8mY0SxMIwRxBgBROwXAHp9dMLj1bbvtPaO1oo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/5KUqoLZYviA
200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/5KUqoLZYviA
IP
Hash 171465d37dc04fc5f9f933c4109cf840
f03ec783b74dc129879523726ca462f8b8e8c9ad
3fbf4a8b0f8629e18658c04cd01523720f6864b2cd8f454036dbd7edf95030e0
POST /s/gts1d4/5KUqoLZYviA HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 19:36:48 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
200 OK 471 B IP
Hash cb7a750fa9348267c15cc938996ead6a
992ddfd1fa25e3ed2fbef82f29b5bc7049b27bd0
f95f2c93dd462fb2d17cf40682e7e6aa5138bcd158dcab83c5d66855f50cec79
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 19:36:48 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 30 Aug 2022 13:56:49 GMT
Expires: Tue, 06 Sep 2022 13:56:48 GMT
Etag: "992ddfd1fa25e3ed2fbef82f29b5bc7049b27bd0"
Cache-Control: max-age=324599,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7448b258bd6bb529-OSL
ad.sxp.smartclip.net/sync?type=host&dsp=69&dspuuid=k-TxFvnnDdyYKTgxDMIasvKMKjdtihwBgD3OGb-w
302 Found 0 B URL HTTP/2 ad.sxp.smartclip.net/sync?type=host&dsp=69&dspuuid=k-TxFvnnDdyYKTgxDMIasvKMKjdtihwBgD3OGb-w
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?type=host&dsp=69&dspuuid=k-TxFvnnDdyYKTgxDMIasvKMKjdtihwBgD3OGb-w HTTP/1.1
Host: ad.sxp.smartclip.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: openresty/1.19.9.1
date: Fri, 02 Sep 2022 19:36:48 GMT
content-length: 0
location: https://ad.sxp.smartclip.net/sync?type=host&dsp=69&dspuuid=k-TxFvnnDdyYKTgxDMIasvKMKjdtihwBgD3OGb-w&ang_testid=1
set-cookie: uuid=81537376-505b-1263-1bd9-639d57ed765a; Domain=sxp.smartclip.net; Path=/; Expires=Sun, 02 Oct 2022 19:36:48 GMT; Max-Age=2592000; SameSite=None; Secure;
access-control-allow-credentials: true
p3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
x.bidswitch.net/sync?dsp_id=46&user_id=k-Ts4g9nDdyYKTgxDMIasvKMKjdth4UzZV_8bjFg&expires=30
302 Moved Temporarily 0 B URL HTTP/1.1 x.bidswitch.net/sync?dsp_id=46&user_id=k-Ts4g9nDdyYKTgxDMIasvKMKjdth4UzZV_8bjFg&expires=30
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?dsp_id=46&user_id=k-Ts4g9nDdyYKTgxDMIasvKMKjdth4UzZV_8bjFg&expires=30 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Fri, 02 Sep 2022 19:36:48 GMT
Location: https://x.bidswitch.net/ul_cb/sync?dsp_id=46&user_id=k-Ts4g9nDdyYKTgxDMIasvKMKjdth4UzZV_8bjFg&expires=30
Set-Cookie: tuuid=339a3b88-53b3-4b57-b736-00703b1deaae; path=/; expires=Sat, 02-Sep-2023 19:36:48 GMT; domain=.bidswitch.net; samesite=none; secure
c=1662147408; path=/; expires=Sat, 02-Sep-2023 19:36:48 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1662147408; path=/; expires=Sat, 02-Sep-2023 19:36:48 GMT; domain=.bidswitch.net; samesite=none; secure
c=1662147408; path=/; expires=Sat, 02-Sep-2023 19:36:48 GMT; domain=.bidswitch.net; samesite=none; secure
Content-Length: 0
Connection: keep-alive
ib.adnxs.com/getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID
307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Fri, 02 Sep 2022 19:36:48 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
AN-X-Request-Uuid: cdd78663-74c5-42af-904c-b05ddf5542b4
Set-Cookie: uuid2=8799468585308554067; SameSite=None; Path=/; Max-Age=7776000; Expires=Thu, 01-Dec-2022 19:36:48 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 952.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 02316d7d14013c7d25f738d99946aab5
2ca946f576561dc184d32572eb94e06221dd9abd
4099c546750dc6cadd0462312d8dac59a9cb2907e523d85c12039141d5548861
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 02 Sep 2022 19:36:48 GMT
Last-Modified: Fri, 02 Sep 2022 18:34:47 GMT
Server: ECS (nyb/1D20)
X-Cache: Miss from cloudfront
Via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: opnlkl3D680FXetCWM2uTdzt-P78VJdWD6DCz1txZo6gYH_YZ6JARg==
Age: 3721
ocsp.pki.goog/s/gts1d4/5KUqoLZYviA
200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/5KUqoLZYviA
IP
Hash 171465d37dc04fc5f9f933c4109cf840
f03ec783b74dc129879523726ca462f8b8e8c9ad
3fbf4a8b0f8629e18658c04cd01523720f6864b2cd8f454036dbd7edf95030e0
POST /s/gts1d4/5KUqoLZYviA HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 19:36:48 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ad.sxp.smartclip.net/sync?type=host&dsp=69&dspuuid=k-TxFvnnDdyYKTgxDMIasvKMKjdtihwBgD3OGb-w&ang_testid=1
200 OK 42 B URL HTTP/2 ad.sxp.smartclip.net/sync?type=host&dsp=69&dspuuid=k-TxFvnnDdyYKTgxDMIasvKMKjdtihwBgD3OGb-w&ang_testid=1
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /sync?type=host&dsp=69&dspuuid=k-TxFvnnDdyYKTgxDMIasvKMKjdtihwBgD3OGb-w&ang_testid=1 HTTP/1.1
Host: ad.sxp.smartclip.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: uuid=81537376-505b-1263-1bd9-639d57ed765a
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty/1.19.9.1
date: Fri, 02 Sep 2022 19:36:48 GMT
content-type: image/gif
content-length: 42
set-cookie: dspuuid=69.k-TxFvnnDdyYKTgxDMIasvKMKjdtihwBgD3OGb-w; Domain=sxp.smartclip.net; Path=/; Expires=Sun, 02 Oct 2022 19:36:48 GMT; Max-Age=2592000; SameSite=None; Secure;
psyn=19237.69; Domain=sxp.smartclip.net; Path=/; Expires=Sun, 02 Oct 2022 19:36:48 GMT; Max-Age=2592000; SameSite=None; Secure;
uuid=81537376-505b-1263-1bd9-639d57ed765a; Domain=sxp.smartclip.net; Path=/; Expires=Sun, 02 Oct 2022 19:36:48 GMT; Max-Age=2592000; SameSite=None; Secure;
access-control-allow-credentials: true
p3p: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
exchange.mediavine.com/usersync/push?partner=criteo&partnerId=k-i8uYvHDdyYKTgxDMIasvKMKjdtg7oTcGXSFm1BRqvxrU0swv
200 OK 70 B URL HTTP/2 exchange.mediavine.com/usersync/push?partner=criteo&partnerId=k-i8uYvHDdyYKTgxDMIasvKMKjdtg7oTcGXSFm1BRqvxrU0swv
IP
File type ASCII text, with no line terminators
Hash e38fd3d2e5baf0cb3472e255f5ae735f
a01e9c94a561ed09a3a95cd41c9a732d8257d516
8d3755df17b6dc0adc74f2aed2446836d59b8556d8d041f8d75cbc4f607a6ed2
GET /usersync/push?partner=criteo&partnerId=k-i8uYvHDdyYKTgxDMIasvKMKjdtg7oTcGXSFm1BRqvxrU0swv HTTP/1.1
Host: exchange.mediavine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 19:36:48 GMT
content-type: text/html; charset=utf-8
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
cache-control: private, no-cache
set-cookie: mv_tokens=%7B%22mv_uuid%22%3A%2296374780-2af6-11ed-a116-53ad60ec8293%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Fri, 16 Sep 2022 19:36:48 GMT; Secure; SameSite=None
mv_tokens_eu-v1=%7B%22mv_uuid%22%3A%2296374780-2af6-11ed-a116-53ad60ec8293%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Fri, 16 Sep 2022 19:36:48 GMT; Secure; SameSite=None
criteo=%7B%22id%22%3A%22k-i8uYvHDdyYKTgxDMIasvKMKjdtg7oTcGXSFm1BRqvxrU0swv%22%2C%22version%22%3A%22criteo%22%7D; Path=/; Expires=Fri, 16 Sep 2022 19:36:48 GMT; Secure; SameSite=None
content-encoding: gzip
X-Firefox-Spdy: h2
x.bidswitch.net/ul_cb/sync?dsp_id=46&user_id=k-Ts4g9nDdyYKTgxDMIasvKMKjdth4UzZV_8bjFg&expires=30
200 OK 43 B URL HTTP/1.1 x.bidswitch.net/ul_cb/sync?dsp_id=46&user_id=k-Ts4g9nDdyYKTgxDMIasvKMKjdth4UzZV_8bjFg&expires=30
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/sync?dsp_id=46&user_id=k-Ts4g9nDdyYKTgxDMIasvKMKjdth4UzZV_8bjFg&expires=30 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store, must-revalidate
Content-Type: image/gif
Date: Fri, 02 Sep 2022 19:36:48 GMT
Content-Length: 43
Connection: keep-alive
criteo-sync.teads.tv/um?eid=80&uid=k-ZTK7XXDdyYKTgxDMIasvKMKjdtjhdNiUv7bydw
200 OK 23 B URL HTTP/2 criteo-sync.teads.tv/um?eid=80&uid=k-ZTK7XXDdyYKTgxDMIasvKMKjdtjhdNiUv7bydw
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash da5b449fff36752a93779fa4067cd2eb
71a96eea77f21ab5f1819b96c4cedd5cd34476ca
328e90a318268aea96180cc31666ae6d6f79d90d078c123bc3d98ee08a192fb7
GET /um?eid=80&uid=k-ZTK7XXDdyYKTgxDMIasvKMKjdtjhdNiUv7bydw HTTP/1.1
Host: criteo-sync.teads.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
server: akka-http/10.2.8
content-length: 23
expires: Fri, 02 Sep 2022 19:36:49 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 02 Sep 2022 19:36:49 GMT
X-Firefox-Spdy: h2
contextual.media.net/cksync.php?cs=3&type=crt&ovsid=k-nNqvvHDdyYKTgxDMIasvKMKjdtghxmAVtRIa0Q
200 OK 45 B URL HTTP/2 contextual.media.net/cksync.php?cs=3&type=crt&ovsid=k-nNqvvHDdyYKTgxDMIasvKMKjdtghxmAVtRIa0Q
IP
File type GIF image data, version 87a, 1 x 1\012- data
Hash 99cceceaed4d575484b69ddaf9ed66a7
1e3a3b15296b585833a22d987a387aa58aa1642d
832f63f4187160c195b04f1911c2e623a75e805f4b23abb9b0bea214b4283a43
GET /cksync.php?cs=3&type=crt&ovsid=k-nNqvvHDdyYKTgxDMIasvKMKjdtghxmAVtRIa0Q HTTP/1.1
Host: contextual.media.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
content-length: 45
content-type: image/gif
set-cookie: visitor-id=3051490083580262000V10; Expires=Sat, 02 Sep 2023 19:36:48 GMT; domain=.media.net; Path=/;
data-c-ts=1662147408;Expires=Sun, 02 Oct 2022 19:36:48 GMT;path=/;domain=.media.net;
data-c=k-nNqvvHDdyYKTgxDMIasvKMKjdtghxmAVtRIa0Q~~3;Expires=Sun, 02 Oct 2022 19:36:48 GMT;path=/;domain=.media.net;
p3p: CP="NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA", CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA, CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA, CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-mnet-hl2: E
expires: Fri, 02 Sep 2022 19:36:49 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 02 Sep 2022 19:36:49 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 37f9feb63010b43ceacea670fa057632
7027adfd1645fb75c5923c4ff5ecd7e4d3ce5e95
9eb9ad204f80a48404e52451af6f02a6dd1384d8808f9e75052de80d38e219d0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1269
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 19:36:49 GMT
Last-Modified: Fri, 02 Sep 2022 19:15:40 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
302 Found 0 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.21.3
Date: Fri, 02 Sep 2022 19:36:49 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
AN-X-Request-Uuid: fc9bfa7c-ca4d-4a2d-84bd-1a15f481ef2c
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 952.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash b17d179a71af1fb31864a523628ae2d0
6d066e75ff7a6871ced6fb09a37f0d9232462518
c139ebe2002441fd9a9a1369c530a9d444fd8f72d12f02d87123980c7715e7ff
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 02 Sep 2022 19:36:49 GMT
Last-Modified: Fri, 02 Sep 2022 17:52:22 GMT
Server: ECS (nyb/1D08)
X-Cache: Miss from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: mmB60XAvXsuSaB7xwyjrZ38vLrdYAR3URcv73co4Mbq0Fmok6g1-Xg==
Age: 6267
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash b213a002cbdba5d867282fa9f09c5d35
078c02fbf65bdb60bbf19ff518553c7fd8f6e044
5b8aad782be1df4258e0b06d9064566e509d68335a9dacba20d266b903de3b06
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 02 Sep 2022 19:36:49 GMT
Last-Modified: Fri, 02 Sep 2022 18:17:18 GMT
Server: ECS (nyb/1D14)
X-Cache: Miss from cloudfront
Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 9g7gDIpNaRLSInby67C6PEfdUkbAgxz5ZT1H-xLgjSKjVUHPO501OA==
Age: 4771
ocsp.digicert.com/
200 OK 471 B IP
Hash b6264afed096611659c501b0e3cfd1cf
fd7e7dde995f7f0263c551e0ee6176cb4445f5f7
fce69384b64fb7cb4f13da766bb467582fafc0e5fa9adbf36d9378556772a145
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2852
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 19:36:49 GMT
Last-Modified: Fri, 02 Sep 2022 18:49:17 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-cj4yQHDdyYKTgxDMIasvKMKjdtguNeIBULQC0g
200 OK 42 B URL HTTP/2 simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-cj4yQHDdyYKTgxDMIasvKMKjdtguNeIBULQC0g
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-cj4yQHDdyYKTgxDMIasvKMKjdtguNeIBULQC0g HTTP/1.1
Host: simage2.pubmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 02 Sep 2022 19:36:49 GMT
content-type: image/gif; charset=utf-8
content-length: 42
set-cookie: KRTBCOOKIE_97=3385-uid:k-cj4yQHDdyYKTgxDMIasvKMKjdtguNeIBULQC0g&KRTB&23144-uid:k-cj4yQHDdyYKTgxDMIasvKMKjdtguNeIBULQC0g&KRTB&23286-uid:k-cj4yQHDdyYKTgxDMIasvKMKjdtguNeIBULQC0g&KRTB&23287-uid:k-cj4yQHDdyYKTgxDMIasvKMKjdtguNeIBULQC0g; domain=pubmatic.com; secure; expires=Sun, 02-Oct-2022 19:36:49 GMT; path=/
PugT=1662147409; domain=pubmatic.com; secure; expires=Sun, 02-Oct-2022 19:36:49 GMT; path=/
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
X-Firefox-Spdy: h2
eb2.3lift.com/xuid?mid=2711&xuid=k-2Q6bxXDdyYKTgxDMIasvKMKjdtjfNoGTRgGVbg&dongle=013b
200 OK 37 B URL HTTP/2 eb2.3lift.com/xuid?mid=2711&xuid=k-2Q6bxXDdyYKTgxDMIasvKMKjdtjfNoGTRgGVbg&dongle=013b
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 3eacd0132310ea44cad756b378a3bc07
e2216a7e9b73f5cb0279351c78ce61c33475cea7
bb229a48bee31f5d54ca12dc9bd960c63a671f0d4be86a054c1d324a44499d96
GET /xuid?mid=2711&xuid=k-2Q6bxXDdyYKTgxDMIasvKMKjdtjfNoGTRgGVbg&dongle=013b HTTP/1.1
Host: eb2.3lift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 19:36:49 GMT
content-type: image/gif
content-length: 37
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
match.sharethrough.com/sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-ovfxJHDdyYKTgxDMIasvKMKjdtgi1eMENcutiQ
204 No Content 0 B URL HTTP/2 match.sharethrough.com/sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-ovfxJHDdyYKTgxDMIasvKMKjdtgi1eMENcutiQ
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-ovfxJHDdyYKTgxDMIasvKMKjdtgi1eMENcutiQ HTTP/1.1
Host: match.sharethrough.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Fri, 02 Sep 2022 19:36:49 GMT
X-Firefox-Spdy: h2
pixel.rubiconproject.com/tap.php?v=6434&nid=2149&put=k-YrxQW3DdyYKTgxDMIasvKMKjdtjzV_WUCNPIfg&expires=30
204 No Content 0 B URL HTTP/1.1 pixel.rubiconproject.com/tap.php?v=6434&nid=2149&put=k-YrxQW3DdyYKTgxDMIasvKMKjdtjzV_WUCNPIfg&expires=30
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tap.php?v=6434&nid=2149&put=k-YrxQW3DdyYKTgxDMIasvKMKjdtjzV_WUCNPIfg&expires=30 HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 49049ff336235ad60cb44abcb1cec1d6
Content-Type: image/gif
ocsp.digicert.com/
200 OK 313 B IP
Hash 147c8bd5a75a899d0b476bfbda85e8c6
d0aa3c777041c2c50fca35f85741e07697059a82
b781a97d752baf1fb40cb2124ebca099fcfc656942d7666bc025e947d9cc136a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5348
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 19:36:49 GMT
Last-Modified: Fri, 02 Sep 2022 18:07:42 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
200 OK 471 B IP
Hash 7d1d7a0cbe8902f1c6911d8d06636e3d
9249a9581e4e23397d570f91e32d08c27fa76c01
eaf3575906f30de7894eec91b11f56528f4e6d8d90f4b0ca49892ab99b6d9733
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5699
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 19:36:49 GMT
Last-Modified: Fri, 02 Sep 2022 18:01:50 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
www.clarity.ms/tag/uet/5715081
200 OK 1.8 kB URL HTTP/2 www.clarity.ms/tag/uet/5715081
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (1829), with no line terminators
Hash ccfcb438bccae9a6c2274bb141e7398c
18c429f31b5ff639dd888ae5b14df0b348d91b31
05133bc9f1cd7440fc101570c816655440894dc889e44f34260b236603c1be11
GET /tag/uet/5715081 HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store
content-type: application/x-javascript
expires: -1
set-cookie: CLID=7c2c0d69a79d4b69945543f878607deb.20220902.20230902; expires=Sat, 02 Sep 2023 19:36:48 GMT; path=/; secure; samesite=none; httponly
request-context: appId=cid-v1:593e4080-f032-4d00-a652-e17f01252a9d
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
x-azure-ref: 0UFsSYwAAAABFT7PYEohiSYooihugu3eNQVRIMDFFREdFMDQxNAA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Fri, 02 Sep 2022 19:36:47 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash b83499acb9d9084e2ae6344d7e4ffd8e
fec88d25ed11714853c1e46f6e3799bcebfe38d5
9b3f32dd934f53283b161aa93e4829bed6dd90e162bd0a9d38eec60b1b91c5ae
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6581
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 19:36:49 GMT
Last-Modified: Fri, 02 Sep 2022 17:47:09 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 471 B IP
Hash 3c5f1534afc70cf7973c450821b0dd5b
2d004c107945a684e6c19c3e4e45f1d29b8d4070
6ac9d25efe6420647f313a90655c96bf970264fae917c7752e2fc10b4a6dde64
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4218
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 19:36:49 GMT
Last-Modified: Fri, 02 Sep 2022 18:26:31 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
rtb-csync.smartadserver.com/redir/?partnerid=79&partneruserid=k-Qj-jDnDdyYKTgxDMIasvKMKjdtjJxNRQlwonfQ
200 OK 43 B URL HTTP/1.1 rtb-csync.smartadserver.com/redir/?partnerid=79&partneruserid=k-Qj-jDnDdyYKTgxDMIasvKMKjdtjJxNRQlwonfQ
IP
ASN #201081 SmartAdServer SAS
File type GIF image data, version 89a, 1 x 1\012- data
Hash 221d8352905f2c38b3cb2bd191d630b0
d804b495cb9b84b9007a25b5d85f9ae674004cde
89fe0ee6020314794fc2cfeacf3d10c31050cfe56f8ebddf1ed0a33fbe941fa7
GET /redir/?partnerid=79&partneruserid=k-Qj-jDnDdyYKTgxDMIasvKMKjdtjJxNRQlwonfQ HTTP/1.1
Host: rtb-csync.smartadserver.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: image/gif
date: Fri, 02 Sep 2022 19:36:48 GMT
cache-control: no-cache,no-store
pragma: no-cache
set-cookie: pid=5476056746976934113; expires=Tue, 03 Oct 2023 19:36:49 GMT; domain=smartadserver.com; path=/
TestIfCookieP=ok; expires=Tue, 03 Oct 2023 19:36:49 GMT; domain=smartadserver.com; path=/
csync=79:k-Qj-jDnDdyYKTgxDMIasvKMKjdtjJxNRQlwonfQ; expires=Sat, 02 Sep 2023 19:36:49 GMT; domain=smartadserver.com; path=/
transfer-encoding: chunked
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-btuFenDdyYKTgxDMIasvKMKjdtjn8nIy2slLvQ
302 Found 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-btuFenDdyYKTgxDMIasvKMKjdtjn8nIy2slLvQ
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58301/sync?_origin=1&uid=k-btuFenDdyYKTgxDMIasvKMKjdtjn8nIy2slLvQ HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 02 Sep 2022 19:36:49 GMT
content-length: 0
strict-transport-security: max-age=31536000
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
location: https://ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-btuFenDdyYKTgxDMIasvKMKjdtjn8nIy2slLvQ&verify=true
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBFFbEmMCEKtgeDXKCBWUMZOlWBgudSAFEgEBAQGsE2McYwAAAAAA_eMAAA&S=AQAAAurdAvvTIy2LKNwXOBwnlto; Expires=Sun, 3 Sep 2023 01:36:49 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 7ac2a549ca7220c81a9bfa2015fed5f3
19c63bd7d67f1d467ccf605ae89519f9e4d4a0bf
f4f04bfd519577f86e46c9bfb906eedba9a291f453c47232bd1e97504e1bdfca
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 02 Sep 2022 19:36:49 GMT
Last-Modified: Fri, 02 Sep 2022 18:02:00 GMT
Server: ECS (nyb/1D24)
X-Cache: Miss from cloudfront
Via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 204bGRveAhJILahkXAZiG0sOYhphA4KN4rdxza33jwTMW1Vuymwc1g==
Age: 5689
cm.adform.net/pixel?adform_pid=15&adform_pc=k-kuGESXDdyYKTgxDMIasvKMKjdtjbp7hLrKE0TA
200 OK 43 B URL HTTP/2 cm.adform.net/pixel?adform_pid=15&adform_pc=k-kuGESXDdyYKTgxDMIasvKMKjdtjbp7hLrKE0TA
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /pixel?adform_pid=15&adform_pc=k-kuGESXDdyYKTgxDMIasvKMKjdtjbp7hLrKE0TA HTTP/1.1
Host: cm.adform.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 02 Sep 2022 19:36:49 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 04 Oct 2021 14:04:49 GMT
etag: "615b0a01-2b"
accept-ranges: bytes
X-Firefox-Spdy: h2
c.clarity.ms/c.gif
302 Found 0 B IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.bing.com/c.gif?CtsSyncId=D135430120E341758B7E04318F918C3C&RedC=c.clarity.ms&MXFR=238A2772A45E6C5D2F4E3561A05E6245
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SM=T; domain=c.clarity.ms; path=/; SameSite=None; Secure;
MUID=238A2772A45E6C5D2F4E3561A05E6245; domain=.clarity.ms; expires=Wed, 27-Sep-2023 19:36:49 GMT; path=/; SameSite=None; Secure; Priority=High;
date: Fri, 02 Sep 2022 19:36:49 GMT
content-length: 0
X-Firefox-Spdy: h2
dpm.demdex.net/ibs:dpid=28645&dpuuid=
302 Found 0 B URL HTTP/1.1 dpm.demdex.net/ibs:dpid=28645&dpuuid=
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ibs:dpid=28645&dpuuid= HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
DCS: dcscanary-prod-irl1-1-v044-00dc34f34.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Location: https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=91334402285965974672276280687783888382; Max-Age=15552000; Expires=Wed, 01 Mar 2023 19:36:49 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-TID: sMnGgPYNSjI=
Content-Length: 0
Connection: keep-alive
ad.360yield.com/match?publisher_dsp_id=38&external_user_id=k-BbXzXXDdyYKTgxDMIasvKMKjdti_FqJ5-kLetw
302 Found 0 B URL HTTP/2 ad.360yield.com/match?publisher_dsp_id=38&external_user_id=k-BbXzXXDdyYKTgxDMIasvKMKjdti_FqJ5-kLetw
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?publisher_dsp_id=38&external_user_id=k-BbXzXXDdyYKTgxDMIasvKMKjdti_FqJ5-kLetw HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 02 Sep 2022 19:36:49 GMT
content-type: text/plain
content-length: 0
location: https://ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-BbXzXXDdyYKTgxDMIasvKMKjdti_FqJ5-kLetw
set-cookie: tuuid=4d2aaeea-07d3-4041-9a02-323452b0be38; Expires=Thu, 01 Dec 2022 19:36:49 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
tuuid_lu=1662147409; Expires=Thu, 01 Dec 2022 19:36:49 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2
ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-btuFenDdyYKTgxDMIasvKMKjdtjn8nIy2slLvQ&verify=true
204 No Content 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-btuFenDdyYKTgxDMIasvKMKjdtjn8nIy2slLvQ&verify=true
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58301/sync?_origin=1&uid=k-btuFenDdyYKTgxDMIasvKMKjdtjn8nIy2slLvQ&verify=true HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Fri, 02 Sep 2022 19:36:49 GMT
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
strict-transport-security: max-age=31536000
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBFFbEmMCEK8yvsG85NbIO2zqYz47N8gFEgEBAQGsE2McYwAAAAAA_eMAAA&S=AQAAAkDEorA7liWjHw_gdKwwhj4; Expires=Sun, 3 Sep 2023 01:36:49 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
sync-t1.taboola.com/sg/criteortb-network/1/rtb-h/?taboola_hm=k-oVJhSnDdyYKTgxDMIasvKMKjdti8dAQqQjzQbQ
200 OK 0 B URL HTTP/2 sync-t1.taboola.com/sg/criteortb-network/1/rtb-h/?taboola_hm=k-oVJhSnDdyYKTgxDMIasvKMKjdti8dAQqQjzQbQ
IP
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sg/criteortb-network/1/rtb-h/?taboola_hm=k-oVJhSnDdyYKTgxDMIasvKMKjdti8dAQqQjzQbQ HTTP/1.1
Host: sync-t1.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 02 Sep 2022 19:36:49 GMT
x-fastly-to-nlb-rtt: 23055
access-control-allow-credentials: true
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 471 B IP
Hash 40bd749e477fb466e4d107cc39c24861
7cb2654172f8275db93397093cafeb75952e3196
4795e7833105124a65bff4c531838fd2314c91fbd976963474f7be31ae485ec4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 19:36:49 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 31 Aug 2022 03:11:55 GMT
Expires: Wed, 07 Sep 2022 03:11:54 GMT
Etag: "7cb2654172f8275db93397093cafeb75952e3196"
Cache-Control: max-age=372304,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7448b25b79fab529-OSL
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash e93841060507122d9d2e0282077c24a6
ce731676aa2cea7953af28435578ced42e45bbcf
4332d7225b96e434731ade1988228742a920e5c44d082641c7ed8dd2bd6fa7f6
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 02 Sep 2022 19:36:49 GMT
Last-Modified: Fri, 02 Sep 2022 18:30:14 GMT
Server: ECS (nyb/1D28)
X-Cache: Miss from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 5jV9KyHF8bWAk94ixt2FEn_a8jzhPAlUsvC6PvFf2qdobMi1mJWBQg==
Age: 3996
sync.outbrain.com/cookie-sync?p=criteo&uid=k-DxikdXDdyYKTgxDMIasvKMKjdti0DokSIAaQcg
200 OK 0 B URL HTTP/1.1 sync.outbrain.com/cookie-sync?p=criteo&uid=k-DxikdXDdyYKTgxDMIasvKMKjdti0DokSIAaQcg
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cookie-sync?p=criteo&uid=k-DxikdXDdyYKTgxDMIasvKMKjdti0DokSIAaQcg HTTP/1.1
Host: sync.outbrain.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 19:36:49 GMT
Content-Length: 0
Cache-Control: no-cache
set-cookie: obuid=e0107d86-c935-48e2-a76a-dd9afea587db; Max-Age=7776000; Expires=Thu, 01 Dec 2022 19:36:49 GMT; Path=/; Domain=.outbrain.com
X-TraceId: 7f913838868eececffe61e9aad2a61d9
ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-BbXzXXDdyYKTgxDMIasvKMKjdti_FqJ5-kLetw
200 OK 43 B URL HTTP/2 ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-BbXzXXDdyYKTgxDMIasvKMKjdti_FqJ5-kLetw
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/match?publisher_dsp_id=38&external_user_id=k-BbXzXXDdyYKTgxDMIasvKMKjdti_FqJ5-kLetw HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 19:36:49 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2
dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
200 OK 59 B URL HTTP/1.1 dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 1251cd5e5c2def4c046309375f87c1c1
e02d6b0c6a5c495c15985e2832e335eda8528c80
4e7010cc46fa361c88e57e3346d27421cf3b8a8bf5f39b43fc45997c60cb1c13
GET /demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid= HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: image/gif
DCS: dcs-prod-irl1-1-v038-0d17c4202.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-TID: LmI8g1IlTUg=
Content-Length: 59
Connection: keep-alive
sync-criteo.ads.yieldmo.com/sync?id=k-WeVUdnDdyYKTgxDMIasvKMKjdtgpIQqcxadd4g&pn_id=criteo&ext=1
200 OK 43 B URL HTTP/2 sync-criteo.ads.yieldmo.com/sync?id=k-WeVUdnDdyYKTgxDMIasvKMKjdtgpIQqcxadd4g&pn_id=criteo&ext=1
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /sync?id=k-WeVUdnDdyYKTgxDMIasvKMKjdtgpIQqcxadd4g&pn_id=criteo&ext=1 HTTP/1.1
Host: sync-criteo.ads.yieldmo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 19:36:49 GMT
content-type: image/gif
content-length: 43
set-cookie: yieldmo_id=g567ff313a728df887c3%7C1662147409306%7C0%7C; Domain=.yieldmo.com; Expires=Sat, 02-Sep-2023 19:36:49 GMT; Path=/; Secure; SameSite=None; Secure
ptrcriteo=k-WeVUdnDdyYKTgxDMIasvKMKjdtgpIQqcxadd4g; Domain=ads.yieldmo.com; Expires=Sat, 02-Sep-2023 19:36:49 GMT; Path=/; Secure; SameSite=None; Secure
access-control-allow-origin: *
access-control-request-headers: Cache-Control, Pragma
access-control-allow-methods: GET, OPTIONS
pragma: no-cache
X-Firefox-Spdy: h2
ad.yieldlab.net/m?dt_id=12438557&ext_id=k-QBk99nDdyYKTgxDMIasvKMKjdtjRKwaBvGHSDg
204 No Content 0 B URL HTTP/1.1 ad.yieldlab.net/m?dt_id=12438557&ext_id=k-QBk99nDdyYKTgxDMIasvKMKjdtjRKwaBvGHSDg
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /m?dt_id=12438557&ext_id=k-QBk99nDdyYKTgxDMIasvKMKjdtjRKwaBvGHSDg HTTP/1.1
Host: ad.yieldlab.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
x-application-context: application
Cache-Control: no-store,no-cache,max-age=-3600,must-revalidate,post-check=0,pre-check=0
Pragma: no-cache
Expires: Thu, 01 Sep 2022 19:36:49 GMT
Date: Fri, 02 Sep 2022 19:36:49 GMT
Connection: keep-alive
Set-Cookie: id=af158f31-1ac4-4431-b698-2ae2e73f2243; Path=/; Domain=yieldlab.net; Expires=Sat, 02-Sep-2023 19:36:49 GMT; Max-Age=31536000; Secure; SameSite=None
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash fc8292dd81fd6d5477ebd8d0df5ee85b
1c1c6589728af2776ec5ccb651e6f942485b8299
9dd3f21c0a894e601edb49c9dc180bdb8603f64bdd55cfe8114b3512e9eef2a5
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 02 Sep 2022 19:36:49 GMT
Last-Modified: Fri, 02 Sep 2022 19:06:45 GMT
Server: ECS (nyb/1D12)
X-Cache: Miss from cloudfront
Via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: -prRMj5lvZNJ_YUWd2aSDM8zbaKJjBiRxVano8JBczqoGZkzALoD1A==
Age: 1804
gum.criteo.com/sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40
302 Found 0 B URL HTTP/2 gum.criteo.com/sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Fri, 02 Sep 2022 19:36:48 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://beacon.krxd.net/usermatch.gif?partner=criteo&partner_uid=
server-processing-duration-in-ticks: 707584
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
visitor.omnitagjs.com/visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-lPIZ43DdyYKTgxDMIasvKMKjdtgQcNVSMPBc8w
200 OK 49 B URL HTTP/2 visitor.omnitagjs.com/visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-lPIZ43DdyYKTgxDMIasvKMKjdtgQcNVSMPBc8w
IP
ASN #200271 Iguane Solutions SAS
File type GIF image data, version 89a, 1 x 1\012- data
Hash 4408efc0174f07ad685c456f1de521ca
e3bc3250f8f32bd98dc7b05fd8940b74617eb8d1
d1371feb0512d700cf724b05a588ce79f8d8dfbb0991ae5f45ecd3ab08983a38
GET /visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-lPIZ43DdyYKTgxDMIasvKMKjdtgQcNVSMPBc8w HTTP/1.1
Host: visitor.omnitagjs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
expires: 0
p3p: CP="CAO PSA OUR"
pragma: no-cache
set-cookie: ayl_visitor=1952368eb50f02e1cbf119d973dd9237; Path=/; Domain=omnitagjs.com; Max-Age=2592000; Secure; SameSite=None
vary: Accept-Encoding
x-content-type-options: nosniff
date: Fri, 02 Sep 2022 19:36:48 GMT
content-length: 49
x-envoy-upstream-service-time: 93
server: ayl-lb-fra02
X-Firefox-Spdy: h2
c.bing.com/c.gif?CtsSyncId=D135430120E341758B7E04318F918C3C&RedC=c.clarity.ms&MXFR=238A2772A45E6C5D2F4E3561A05E6245
302 Found 0 B URL HTTP/2 c.bing.com/c.gif?CtsSyncId=D135430120E341758B7E04318F918C3C&RedC=c.clarity.ms&MXFR=238A2772A45E6C5D2F4E3561A05E6245
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif?CtsSyncId=D135430120E341758B7E04318F918C3C&RedC=c.clarity.ms&MXFR=238A2772A45E6C5D2F4E3561A05E6245 HTTP/1.1
Host: c.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaviar.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.clarity.ms/c.gif?CtsSyncId=D135430120E341758B7E04318F918C3C&MUID=2B4BC93110DC66041B12DB221129676F
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SRM_B=2B4BC93110DC66041B12DB221129676F; domain=c.bing.com; expires=Wed, 27-Sep-2023 19:36:49 GMT; path=/; SameSite=None; Secure;
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: C248C03312A7484E9EF4F3D0351026D7 Ref B: OSL30EDGE0215 Ref C: 2022-09-02T19:36:49Z
date: Fri, 02 Sep 2022 19:36:48 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 3ffcbb50fa3da9175c8faa8527cfe57a
5dccfc33bd78d9d2a7a1809b1c429b0555e1f9d4
4c4e64eadf49e2c31572b0044bdb75b95cc7616bb1dd645d4be6ab97d9e14898
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1378
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 19:36:49 GMT
Last-Modified: Fri, 02 Sep 2022 19:13:51 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
c.clarity.ms/c.gif?CtsSyncId=D135430120E341758B7E04318F918C3C&MUID=2B4BC93110DC66041B12DB221129676F
200 OK 42 B URL HTTP/2 c.clarity.ms/c.gif?CtsSyncId=D135430120E341758B7E04318F918C3C&MUID=2B4BC93110DC66041B12DB221129676F
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 1 x 1\012- data
Hash 32023bb33cfb2a1990a4ef2d85b6ac16
23dcc6d4b5bfe00357fd0248bb5955b8e36bb8f1
99c2917ee5b2a01459a923bdd1c676f15ee73b62b87f696e6735312d26f51e12
GET /c.gif?CtsSyncId=D135430120E341758B7E04318F918C3C&MUID=2B4BC93110DC66041B12DB221129676F HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaviar.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
content-type: image/gif
last-modified: Wed, 17 Aug 2022 23:56:46 GMT
accept-ranges: bytes
etag: "de363c295b2d81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: ANONCHK=0; domain=c.clarity.ms; expires=Fri, 02-Sep-2022 19:46:49 GMT; path=/; SameSite=None; Secure;
date: Fri, 02 Sep 2022 19:36:49 GMT
content-length: 42
X-Firefox-Spdy: h2
beacon.krxd.net/usermatch.gif?partner=criteo&partner_uid=
204 No Content 0 B URL HTTP/2 beacon.krxd.net/usermatch.gif?partner=criteo&partner_uid=
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usermatch.gif?partner=criteo&partner_uid= HTTP/1.1
Host: beacon.krxd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Fri, 02 Sep 2022 19:36:49 GMT
set-cookie: _kuid_=PDjSHPix; Expires=Wed, 01-Mar-23 19:36:49 GMT; Max-Age=15552000; Domain=.krxd.net; Path=/
cache-control: private, no-cache, no-store
p3p: policyref="https://cdn.krxd.net/kruxcontent/p3p.xml", CP="NON DSP COR NID OUR DEL SAM OTR UNR COM NAV INT DEM CNT STA PRE LOC OTC"
x-served-by: beacon-n007-dub-prod.krxd.net
x-request-time: D=41 t=1662147409
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40
302 Found 0 B URL HTTP/2 gum.criteo.com/sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Fri, 02 Sep 2022 19:36:48 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://s.thebrighttag.com/cs?btt=0&tp=cr&uid=
server-processing-duration-in-ticks: 226755
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.entrust.net/
200 OK 1.6 kB IP
Hash 7ca0fdee1e018b252b843634606970e2
4c5c608c65e582808c82d522dfd954e6568566ff
c9c16a9782d9e8e18e5b4cbb161f76c08854e271afccfc3bd8d4a696f09d4b85
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "C9C16A9782D9E8E18E5B4CBB161F76C08854E271AFCCFC3BD8D4A696F09D4B85"
Last-Modified: Fri, 02 Sep 2022 07:00:00 UTC
Content-Length: 1586
Cache-Control: public, no-transform, must-revalidate, max-age=3552
Expires: Fri, 02 Sep 2022 20:36:01 GMT
Date: Fri, 02 Sep 2022 19:36:49 GMT
Connection: keep-alive
www.clarity.ms/eus2/s/0.6.40/clarity.js
200 OK 23 kB URL HTTP/2 www.clarity.ms/eus2/s/0.6.40/clarity.js
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (54745)
Hash 6a87d835543a151541da0ae963173dd7
80bac2abc74d2fa93a63ff82514fd64ee8caf9a0
c806647a143cb92f41ed1e60c6be245cd4e78b447c90adbed881ca54ecfa7337
GET /eus2/s/0.6.40/clarity.js HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public,max-age=86400
content-type: application/javascript;charset=utf-8
content-encoding: br
last-modified: Wed, 01 Jun 2022 12:22:22 GMT
accept-ranges: bytes
etag: "1d8bd4806fdad30"
vary: Accept-Encoding
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
x-azure-ref: 0UVsSYwAAAACpSqLd05gvQpV6He9w5PvTQVRIMDFFREdFMDQxNAA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Fri, 02 Sep 2022 19:36:48 GMT
X-Firefox-Spdy: h2
gs.mountain.com/gs
200 OK 144 B IP
File type ASCII text, with no line terminators
Hash a3edf7dbc9997b7932779304420cd586
d25b366da3873f100c42191aaaea5557a2acde1e
ad24a78568e8c8b2cbcd57d013f5db32a369f9c2fc099303663c6c71e8d72ca9
GET /gs HTTP/1.1
Host: gs.mountain.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Cookie: guid=965c8342-2af6-11ed-a88f-194f2ebad79f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Fri, 02 Sep 2022 19:36:49 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, x-requested-with, X-Custom-Header
x-application-context: application:prod:8080
content-type: application/javascript;charset=utf-8
p3p: CP="NON DSP COR NID CURa ADMa DEVa PSAa PSDa OUR STP UNI COM NAV INT STA PRE"
cache-control: public, max-age=31536000
last-modified: Thu, 01 Jan 1970 00:00:00 GMT
content-length: 144
x-envoy-upstream-service-time: 0
server: istio-envoy
connection: close
s.thebrighttag.com/cs?btt=0&tp=cr&uid=
200 OK 35 B URL HTTP/2 s.thebrighttag.com/cs?btt=0&tp=cr&uid=
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /cs?btt=0&tp=cr&uid= HTTP/1.1
Host: s.thebrighttag.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 19:36:49 GMT
content-type: image/gif
content-length: 35
x-bt-requestid: 96dab370-2af6-11ed-8297-0000ac1700a8
cache-control: private, must-revalidate
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin:
server: nginx
p3p: CP=NOI DSP COR NID
X-Firefox-Spdy: h2
b.clarity.ms/collect
204 No Content 0 B IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: b.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 145531
Origin: https://flaviar.com
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
access-control-allow-origin: https://flaviar.com
access-control-allow-credentials: true
x-powered-by: ASP.NET
date: Fri, 02 Sep 2022 19:36:49 GMT
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsgccr3dvtlsca2020
200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP
Hash cbec31e56ee19120b6bfb4d593ebaf8c
ea04d2ac1f6f31c00cfe9c36d2c6e87e7e59897c
21fe5a64cd791e7342f27bc655b933de5bfa7c5af4579aa31c09e07d5bd2d572
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 19:36:50 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Tue, 06 Sep 2022 15:49:09 GMT
ETag: "ea04d2ac1f6f31c00cfe9c36d2c6e87e7e59897c"
Last-Modified: Fri, 02 Sep 2022 15:49:10 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3571
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7448b265d926b4fd-OSL
ocsp.globalsign.com/gsgccr3dvtlsca2020
200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP
Hash cbec31e56ee19120b6bfb4d593ebaf8c
ea04d2ac1f6f31c00cfe9c36d2c6e87e7e59897c
21fe5a64cd791e7342f27bc655b933de5bfa7c5af4579aa31c09e07d5bd2d572
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 19:36:50 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Tue, 06 Sep 2022 15:49:09 GMT
ETag: "ea04d2ac1f6f31c00cfe9c36d2c6e87e7e59897c"
Last-Modified: Fri, 02 Sep 2022 15:49:10 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3571
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7448b265dd7e1c06-OSL
match.adsrvr.org/track/cmf/generic?ttd_pid=steelhouse&ttd_tpi=1&ttd_puid=965c8342-2af6-11ed-a88f-194f2ebad79f&gdpr=&gdpr_consent=
200 OK 70 B URL HTTP/2 match.adsrvr.org/track/cmf/generic?ttd_pid=steelhouse&ttd_tpi=1&ttd_puid=965c8342-2af6-11ed-a88f-194f2ebad79f&gdpr=&gdpr_consent=
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 58a7930cd4577fc33c35828c271eab8f
406e57f86dc101e10f3a57be1e2f7b93c4580474
8d70b3e6badb6973663b398d297bb32eaedd08826a1af98d0a1cfce5324ffce0
GET /track/cmf/generic?ttd_pid=steelhouse&ttd_tpi=1&ttd_puid=965c8342-2af6-11ed-a88f-194f2ebad79f&gdpr=&gdpr_consent= HTTP/1.1
Host: match.adsrvr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 19:36:50 GMT
content-type: image/gif
content-length: 70
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
cdn.attn.tv/attn.js?v=4-latest_f2aab3c94a
200 OK 60 kB URL HTTP/2 cdn.attn.tv/attn.js?v=4-latest_f2aab3c94a
IP
File type Unicode text, UTF-8 text, with very long lines (65432)
Hash cf56f40091087cd2ed0a37d9cd74757c
db7628c1c637b1a9d5f6907950aa7711e0c28f74
de1f72012b23c885972e5b8615aa06aae30af53b237fd0269f44815a390b2b50
GET /attn.js?v=4-latest_f2aab3c94a HTTP/1.1
Host: cdn.attn.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 59775
x-amz-replication-status: COMPLETED
last-modified: Mon, 29 Aug 2022 19:11:26 GMT
content-encoding: gzip
x-amz-version-id: e7lN5rFD_Ze_MxgLafnerZam2fCyGUd3
accept-ranges: bytes
server: AmazonS3
date: Fri, 02 Sep 2022 19:36:51 GMT
cache-control: public, max-age=300
etag: "cf56f40091087cd2ed0a37d9cd74757c"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: NOc60tS4cmiFiSs0eCSH6INe7ji7VZsABh0bNLNBSOtRfkL9KC8LRg==
age: 83
X-Firefox-Spdy: h2
cdn.attn.tv/flaviar/dtag.js
200 OK 2.0 kB URL HTTP/2 cdn.attn.tv/flaviar/dtag.js
IP
File type ASCII text, with very long lines (4300), with no line terminators
Hash 43282c83945e6242789a2a11b74093a7
73deed7b8fc4c7d3b3b4d2cd127d288a19ae0691
0d58d8d1315af89db74eb06015eec61daa09daa8c212d0fda4e702b96e227b8f
GET /flaviar/dtag.js HTTP/1.1
Host: cdn.attn.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript
x-amz-replication-status: COMPLETED
last-modified: Thu, 07 Apr 2022 14:16:51 GMT
x-amz-version-id: mm1Z2zipvEmhdIuHD92jriNWm_stLF2c
server: AmazonS3
content-encoding: gzip
date: Fri, 02 Sep 2022 19:36:51 GMT
cache-control: public, max-age=120
etag: W/"8e86c558e5fbcccafd5cd04b3bb61be8"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: X0f_1jhX1pg7qDuYJ8z7YDY6OQx_k_Aczvs9H8W8jXbF3IPkiMYSNg==
X-Firefox-Spdy: h2
px.mountain.com/st?ga_tracking_id=UA-28959768-20&ga_client_id=392760526.1662147404&shpt=Flaviar%20Membership%20%C2%BB%20Fine%20Spirits%20%26%20Whiskey%20Club%20%F0%9F%A5%83%20-%20Flaviar&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-28959768-20%22%2C%22ga_client_id%22%3A%22392760526.1662147404%22%2C%22shpt%22%3A%22Flaviar%20Membership%20%C2%BB%20Fine%20Spirits%20%26%20Whiskey%20Club%20%F0%9F%A5%83%20-%20Flaviar%22%2C%22dcm_cid%22%3A%221662147403.1%22%2C%22dcm_gid%22%3A%22706493816.1662147405%22%2C%22ga_gclid%22%3A%22392760526.1662147404%22%2C%22execution_workflow%22%3A%7B%22iteration%22%3A1%2C%22getClientIdByGA%22%3A%22OK%22%2C%22ga_gclid%22%3A%22OK%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%7D&dcm_cid=1662147403.1&dcm_gid=706493816.1662147405&dxver=4.0.0&shaid=33038&plh=https%3A%2F%2Fflaviar.com%2F&shadditional=googletagmanager%3Dtrue%2Cga4%3Dtrue%2Ccriteo%3Dtrue&cb=1662147409132136&shguid=35b0bce9-d250-329d-b012-c0426f88d0bd&shgts=1662147409862
200 OK 20 kB URL HTTP/1.1 px.mountain.com/st?ga_tracking_id=UA-28959768-20&ga_client_id=392760526.1662147404&shpt=Flaviar%20Membership%20%C2%BB%20Fine%20Spirits%20%26%20Whiskey%20Club%20%F0%9F%A5%83%20-%20Flaviar&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-28959768-20%22%2C%22ga_client_id%22%3A%22392760526.1662147404%22%2C%22shpt%22%3A%22Flaviar%20Membership%20%C2%BB%20Fine%20Spirits%20%26%20Whiskey%20Club%20%F0%9F%A5%83%20-%20Flaviar%22%2C%22dcm_cid%22%3A%221662147403.1%22%2C%22dcm_gid%22%3A%22706493816.1662147405%22%2C%22ga_gclid%22%3A%22392760526.1662147404%22%2C%22execution_workflow%22%3A%7B%22iteration%22%3A1%2C%22getClientIdByGA%22%3A%22OK%22%2C%22ga_gclid%22%3A%22OK%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%7D&dcm_cid=1662147403.1&dcm_gid=706493816.1662147405&dxver=4.0.0&shaid=33038&plh=https%3A%2F%2Fflaviar.com%2F&shadditional=googletagmanager%3Dtrue%2Cga4%3Dtrue%2Ccriteo%3Dtrue&cb=1662147409132136&shguid=35b0bce9-d250-329d-b012-c0426f88d0bd&shgts=1662147409862
IP
Hash aa5fa2e178b4ed00dc08bbe4f301cf23
62b01021caa04d26161bf6e0f7c8718877437419
666981161a1dd6bd97a28a2f8f63c322c619eacfd27d38fb7791fabea48957e9
GET /st?ga_tracking_id=UA-28959768-20&ga_client_id=392760526.1662147404&shpt=Flaviar%20Membership%20%C2%BB%20Fine%20Spirits%20%26%20Whiskey%20Club%20%F0%9F%A5%83%20-%20Flaviar&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-28959768-20%22%2C%22ga_client_id%22%3A%22392760526.1662147404%22%2C%22shpt%22%3A%22Flaviar%20Membership%20%C2%BB%20Fine%20Spirits%20%26%20Whiskey%20Club%20%F0%9F%A5%83%20-%20Flaviar%22%2C%22dcm_cid%22%3A%221662147403.1%22%2C%22dcm_gid%22%3A%22706493816.1662147405%22%2C%22ga_gclid%22%3A%22392760526.1662147404%22%2C%22execution_workflow%22%3A%7B%22iteration%22%3A1%2C%22getClientIdByGA%22%3A%22OK%22%2C%22ga_gclid%22%3A%22OK%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%7D&dcm_cid=1662147403.1&dcm_gid=706493816.1662147405&dxver=4.0.0&shaid=33038&plh=https%3A%2F%2Fflaviar.com%2F&shadditional=googletagmanager%3Dtrue%2Cga4%3Dtrue%2Ccriteo%3Dtrue&cb=1662147409132136&shguid=35b0bce9-d250-329d-b012-c0426f88d0bd&shgts=1662147409862 HTTP/1.1
Host: px.mountain.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Cookie: guid=965c8342-2af6-11ed-a88f-194f2ebad79f
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Fri, 02 Sep 2022 19:36:50 GMT
content-type: application/javascript;charset=utf-8
access-control-allow-origin: *
p3p: CP="NON DSP COR NID CURa ADMa DEVa PSAa PSDa OUR STP UNI COM NAV INT STA PRE"
set-cookie: tt=H4sIAAAAAAAAAKtWKlOyMtJR8guKNzY2MLaINzK3NFayMkAWsTC2AIsgcw3NzIwMTcxNDA1MTSxrATtmw5dGAAAA;Domain=px.mountain.com;Max-Age=63113852;Path=/;SameSite=None;Secure
rt="MzMwMzg6MTY2MjE0NzQxMA==";Domain=mountain.com;Max-Age=63113852;Path=/;SameSite=None;Secure
guid=965c8342-2af6-11ed-a88f-194f2ebad79f;Domain=mountain.com;Max-Age=63113852;Path=/;SameSite=None;Secure
content-encoding: gzip
connection: close
flaviar.attn.tv/unrenderedCreative?v=24a48c09&r=&id=fb29ac8005ae45d49bf218ddddb05dc2&pv=1&l=https%3A%2F%2Fflaviar.com%2F&w=1280&h=939&ss_ref=ORGANIC&m=marketing&m=live-sms
204 No Content 0 B URL HTTP/2 flaviar.attn.tv/unrenderedCreative?v=24a48c09&r=&id=fb29ac8005ae45d49bf218ddddb05dc2&pv=1&l=https%3A%2F%2Fflaviar.com%2F&w=1280&h=939&ss_ref=ORGANIC&m=marketing&m=live-sms
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /unrenderedCreative?v=24a48c09&r=&id=fb29ac8005ae45d49bf218ddddb05dc2&pv=1&l=https%3A%2F%2Fflaviar.com%2F&w=1280&h=939&ss_ref=ORGANIC&m=marketing&m=live-sms HTTP/1.1
Host: flaviar.attn.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaviar.com/
Content-Type: text/plain;charset=UTF-8
Origin: https://flaviar.com
Content-Length: 29
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Fri, 02 Sep 2022 19:36:52 GMT
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate
x-envoy-upstream-service-time: 2
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7448b26a9e6b0b59-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
b.clarity.ms/collect
204 No Content 0 B IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: b.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1141
Origin: https://flaviar.com
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
access-control-allow-origin: https://flaviar.com
access-control-allow-credentials: true
x-powered-by: ASP.NET
date: Fri, 02 Sep 2022 19:36:52 GMT
X-Firefox-Spdy: h2
dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-1syu6nDdyYKTgxDMIasvKMKjdtgP4o2eHavqTA&google_error=3
200 OK 0 B URL HTTP/2 dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-1syu6nDdyYKTgxDMIasvKMKjdtgP4o2eHavqTA&google_error=3
IP
GET /dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-1syu6nDdyYKTgxDMIasvKMKjdtgP4o2eHavqTA&google_error=3 HTTP/1.1
Host: dis.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 19:36:48 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP='NON DSP COR CURa PSA PSD OUR BUS NAV STA'
timing-allow-origin: *
server-processing-duration-in-ticks: 456336
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
tr.snapchat.com/collector/is_enabled?pids=b838e1c8-e5cb-4d99-bda2-d5594b71ff41&tld=com
200 OK 0 B URL HTTP/2 tr.snapchat.com/collector/is_enabled?pids=b838e1c8-e5cb-4d99-bda2-d5594b71ff41&tld=com
IP
GET /collector/is_enabled?pids=b838e1c8-e5cb-4d99-bda2-d5594b71ff41&tld=com HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaviar.com/
Origin: https://flaviar.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 19:36:47 GMT
access-control-allow-origin: https://flaviar.com
content-type: application/json
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-envoy-upstream-service-time: 0
content-encoding: gzip
vary: Accept-Encoding
server: API Gateway
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.flaviar.com/build/app-main.fdede722.js
200 OK 0 B URL HTTP/2 cdn.flaviar.com/build/app-main.fdede722.js
IP
GET /build/app-main.fdede722.js HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: application/javascript
date: Fri, 02 Sep 2022 14:20:37 GMT
last-modified: Fri, 02 Sep 2022 14:13:14 GMT
etag: W/"0923b2a21fe50fe208ac14e72883ab0c-1"
cache-control: public, max-age=3888000, immutable
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Hg_A_z69S3vb0ORNk6ZYxH525PJD_QFul5nHyVTg2xzCb6x3B9RfAA==
age: 18967
X-Firefox-Spdy: h2
widget.trustpilot.com/trustbox-data/5419b6ffb0d04a076446a9af?businessUnitId=5c63d6134064df0001fff3b7&locale=en-US
200 OK 0 B URL HTTP/2 widget.trustpilot.com/trustbox-data/5419b6ffb0d04a076446a9af?businessUnitId=5c63d6134064df0001fff3b7&locale=en-US
IP
GET /trustbox-data/5419b6ffb0d04a076446a9af?businessUnitId=5c63d6134064df0001fff3b7&locale=en-US HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Connection: keep-alive
Referer: https://widget.trustpilot.com/trustboxes/5419b6ffb0d04a076446a9af/index.html?templateId=5419b6ffb0d04a076446a9af&businessunitId=5c63d6134064df0001fff3b7
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=utf-8
content-encoding: gzip
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-fallback-status: BYPASS
x-skip-cache-cookie: 0
x-xss-protection: 1; mode=block
cache-control: public,max-age=1800
date: Fri, 02 Sep 2022 19:28:21 GMT
etag: "16448fca7a05621634128cc380f17f4d"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: xFYRet4GNKm6BainzzJg5e1ffFIWYnjIvQQPOgXOgMaEwV5kcWQIwQ==
age: 505
X-Firefox-Spdy: h2
criteo-partners.tremorhub.com/sync?UICR=k-_aYaHXDdyYKTgxDMIasvKMKjdtjjM8g9PUlrYQ
200 OK 0 B URL HTTP/2 criteo-partners.tremorhub.com/sync?UICR=k-_aYaHXDdyYKTgxDMIasvKMKjdtjjM8g9PUlrYQ
IP
GET /sync?UICR=k-_aYaHXDdyYKTgxDMIasvKMKjdtjjM8g9PUlrYQ HTTP/1.1
Host: criteo-partners.tremorhub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 19:36:49 GMT
content-type: image/gif
server: Apache-Coyote/1.1
p3p: CP='This is not a P3P policy. See https://telaria.com/privacy-policy/'
X-Firefox-Spdy: h2
cdn.flaviar.com/build/images/icons/logo-mob-menu.89749fa1.svg
200 OK 0 B URL HTTP/2 cdn.flaviar.com/build/images/icons/logo-mob-menu.89749fa1.svg
IP
GET /build/images/icons/logo-mob-menu.89749fa1.svg HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Cookie: _ga_94QYBVSJNV=GS1.1.1662147403.1.0.1662147403.60.0.0; _ga=GA1.1.392760526.1662147404
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
date: Fri, 19 Aug 2022 10:15:31 GMT
last-modified: Fri, 19 Aug 2022 09:26:07 GMT
etag: W/"ebbf6ac0338489b0efa6046a8e59dde4-1"
cache-control: public, max-age=3888000, immutable
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: pRiGFIPHVLANmdiobMShLvG-lEs_pfmOFZRFV2LARynW43E0sHfYMg==
age: 1243275
X-Firefox-Spdy: h2
dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
200 OK 0 B URL HTTP/2 dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
IP
GET /dis/rtb/appnexus/cookiematch.aspx?appnxsid=0 HTTP/1.1
Host: dis.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 19:36:48 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP='NON DSP COR CURa PSA PSD OUR BUS NAV STA'
timing-allow-origin: *
server-processing-duration-in-ticks: 573711
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
cdn.flaviar.com/build/app-style.46a221b5.css
200 OK 0 B URL HTTP/2 cdn.flaviar.com/build/app-style.46a221b5.css
IP
GET /build/app-style.46a221b5.css HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
date: Fri, 02 Sep 2022 10:54:09 GMT
last-modified: Fri, 02 Sep 2022 10:52:39 GMT
etag: W/"0d5c53d353d527491e8c45b6073fcbde-1"
cache-control: public, max-age=3888000, immutable
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 3AXfYgkuDtWvv8lfZcVYgo-UxEZ0eRTol_lXianEWMBe_VccfGpyBg==
age: 31356
X-Firefox-Spdy: h2
tr.snapchat.com/init?pids=b838e1c8-e5cb-4d99-bda2-d5594b71ff41
200 OK 0 B URL HTTP/2 tr.snapchat.com/init?pids=b838e1c8-e5cb-4d99-bda2-d5594b71ff41
IP
GET /init?pids=b838e1c8-e5cb-4d99-bda2-d5594b71ff41 HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaviar.com/
Origin: https://flaviar.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 19:36:47 GMT
access-control-allow-origin: https://flaviar.com
content-type: application/json
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-envoy-upstream-service-time: 0
content-encoding: gzip
vary: Accept-Encoding
server: API Gateway
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.flaviar.com/build/6.ce717dae.js
200 OK 0 B URL HTTP/2 cdn.flaviar.com/build/6.ce717dae.js
IP
GET /build/6.ce717dae.js HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: application/javascript
date: Mon, 29 Aug 2022 11:00:34 GMT
last-modified: Mon, 29 Aug 2022 10:59:12 GMT
etag: W/"80d3a698f2c31a52cd2cd03eaf49dce5-1"
cache-control: public, max-age=3888000, immutable
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: vHFqFlGN5HaGlpr2mYXUzm4eyc_Ys9bllEaOICoh5xUUOtUBUPAfEQ==
age: 376572
X-Firefox-Spdy: h2
cdn.flaviar.com/build/2f5229cba5018924b139053104305e8a.svg
200 OK 0 B URL HTTP/2 cdn.flaviar.com/build/2f5229cba5018924b139053104305e8a.svg
IP
GET /build/2f5229cba5018924b139053104305e8a.svg HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn.flaviar.com/build/app-style.46a221b5.css
Cookie: _ga_94QYBVSJNV=GS1.1.1662147403.1.0.1662147403.60.0.0; _ga=GA1.1.392760526.1662147404
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
date: Fri, 22 Jul 2022 06:22:04 GMT
last-modified: Thu, 21 Jul 2022 13:29:05 GMT
etag: W/"4c6347cccfa9222bea0eef8c6f75b1eb-1"
cache-control: public, max-age=3888000, immutable
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: R26RRq8B5tMQur1pqQz7cbrNcWSIe-n6nfVsHrjAjJpTS1M_7ChtPg==
age: 3676482
X-Firefox-Spdy: h2
cdn.flaviar.com/build/fonts/Nitti-Normal.dfcca7d1.otf
200 OK 0 B URL HTTP/2 cdn.flaviar.com/build/fonts/Nitti-Normal.dfcca7d1.otf
IP
GET /build/fonts/Nitti-Normal.dfcca7d1.otf HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://flaviar.com
Connection: keep-alive
Referer: https://cdn.flaviar.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: font/otf
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 7776000
last-modified: Mon, 11 Jul 2022 13:26:09 GMT
server: AmazonS3
content-encoding: gzip
date: Fri, 26 Aug 2022 04:45:56 GMT
cache-control: public, max-age=3888000, immutable
etag: W/"0e573e77619a53e42a59131479b01bbc-1"
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: QZIE52-2Cj-FKNreM9CfqKywUSRLO2VlyKv0bk_dPpLPxcOQGUMpxw==
age: 658250
X-Firefox-Spdy: h2
cdn.flaviar.com/build/fonts/MalagaOT-BoldItalic.9e4f2f1c.otf
200 OK 0 B URL HTTP/2 cdn.flaviar.com/build/fonts/MalagaOT-BoldItalic.9e4f2f1c.otf
IP
GET /build/fonts/MalagaOT-BoldItalic.9e4f2f1c.otf HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://flaviar.com
Connection: keep-alive
Referer: https://cdn.flaviar.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: font/otf
date: Wed, 10 Aug 2022 07:14:04 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 7776000
last-modified: Tue, 09 Aug 2022 12:27:51 GMT
etag: W/"98bb7c8a238c6fd7d88826b0786c98bc-1"
cache-control: public, max-age=3888000, immutable
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 9ZAzxW2oZTNP0lIpPgxE3ZOOzplWvHHpMQ_Zy42hnlPS6d7paGGulg==
age: 2031762
X-Firefox-Spdy: h2
static.fbot.me/friendbuy.js
200 OK 0 B URL HTTP/2 static.fbot.me/friendbuy.js
IP
GET /friendbuy.js HTTP/1.1
Host: static.fbot.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 30 Aug 2022 17:07:28 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: uuPEXvzwZOHLCxdZt80c8N2kwrt2XA62
server: AmazonS3
content-encoding: gzip
date: Fri, 02 Sep 2022 19:33:23 GMT
cache-control: max-age=300
etag: W/"f3d19e4af9822e0c7d7ff1bf871e466e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: N9M-Rp8gXrXc1mdCUiUNJAvVlt4Xb3MsXBgAQbr3a9MTWmT5v7cVrQ==
age: 203
X-Firefox-Spdy: h2
cdn.flaviar.com/build/4.2a092778.css
200 OK 0 B URL HTTP/2 cdn.flaviar.com/build/4.2a092778.css
IP
GET /build/4.2a092778.css HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
date: Wed, 20 Jul 2022 07:19:51 GMT
last-modified: Tue, 19 Jul 2022 13:45:17 GMT
etag: W/"f3b9d55198bcef67fac8f7bdc78c3c88-1"
cache-control: public, max-age=3888000, immutable
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: OMv4UkmTDWUwwiTE7lrhH0JNzrjepop6UPDjFGk_ZgquWaIiv_5CXA==
age: 3845813
X-Firefox-Spdy: h2
cdn.flaviar.com/build/landing-frontpage.2932a276.css
200 OK 0 B URL HTTP/2 cdn.flaviar.com/build/landing-frontpage.2932a276.css
IP
GET /build/landing-frontpage.2932a276.css HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
date: Mon, 22 Aug 2022 10:46:38 GMT
last-modified: Mon, 22 Aug 2022 10:42:57 GMT
etag: W/"d896832036da46556de471f5dfa215e0-1"
cache-control: public, max-age=3888000, immutable
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: JyG0lcy_x6tA3A8z5LNTZVf3zQiD5e2HXhYw3AD4JfPb_OzFlX9fbA==
age: 982207
X-Firefox-Spdy: h2
dx.mountain.com/spx?dxver=4.0.0&shaid=33038&tdr=&plh=https%3A%2F%2Fflaviar.com%2F&cb=35368762773593400term=value
200 0 B URL HTTP/1.1 dx.mountain.com/spx?dxver=4.0.0&shaid=33038&tdr=&plh=https%3A%2F%2Fflaviar.com%2F&cb=35368762773593400term=value
IP
GET /spx?dxver=4.0.0&shaid=33038&tdr=&plh=https%3A%2F%2Fflaviar.com%2F&cb=35368762773593400term=value HTTP/1.1
Host: dx.mountain.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
expires: Thu, 01 Jan 1970 00:00:00 GMT
content-encoding: gzip
content-type: application/javascript;charset=utf-8
date: Fri, 02 Sep 2022 19:36:47 GMT
connection: close
px.mountain.com/st?ga_tracking_id=UA-28959768-20&ga_client_id=392760526.1662147404&shpt=Flaviar%20Membership%20%C2%BB%20Fine%20Spirits%20%26%20Whiskey%20Club%20%F0%9F%A5%83%20-%20Flaviar&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-28959768-20%22%2C%22ga_client_id%22%3A%22392760526.1662147404%22%2C%22shpt%22%3A%22Flaviar%20Membership%20%C2%BB%20Fine%20Spirits%20%26%20Whiskey%20Club%20%F0%9F%A5%83%20-%20Flaviar%22%2C%22dcm_cid%22%3A%221662147403.1%22%2C%22dcm_gid%22%3A%22706493816.1662147405%22%2C%22ga_gclid%22%3A%22392760526.1662147404%22%2C%22execution_workflow%22%3A%7B%22iteration%22%3A1%2C%22getClientIdByGA%22%3A%22OK%22%2C%22ga_gclid%22%3A%22OK%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%7D&dcm_cid=1662147403.1&dcm_gid=706493816.1662147405&dxver=4.0.0&shaid=33038&plh=https%3A%2F%2Fflaviar.com%2F&cb=35368762773593400term%3Dvalue&shadditional=googletagmanager%3Dtrue%2Cga4%3Dtrue%2Ccriteo%3Dtrue
200 OK 0 B URL HTTP/1.1 px.mountain.com/st?ga_tracking_id=UA-28959768-20&ga_client_id=392760526.1662147404&shpt=Flaviar%20Membership%20%C2%BB%20Fine%20Spirits%20%26%20Whiskey%20Club%20%F0%9F%A5%83%20-%20Flaviar&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-28959768-20%22%2C%22ga_client_id%22%3A%22392760526.1662147404%22%2C%22shpt%22%3A%22Flaviar%20Membership%20%C2%BB%20Fine%20Spirits%20%26%20Whiskey%20Club%20%F0%9F%A5%83%20-%20Flaviar%22%2C%22dcm_cid%22%3A%221662147403.1%22%2C%22dcm_gid%22%3A%22706493816.1662147405%22%2C%22ga_gclid%22%3A%22392760526.1662147404%22%2C%22execution_workflow%22%3A%7B%22iteration%22%3A1%2C%22getClientIdByGA%22%3A%22OK%22%2C%22ga_gclid%22%3A%22OK%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%7D&dcm_cid=1662147403.1&dcm_gid=706493816.1662147405&dxver=4.0.0&shaid=33038&plh=https%3A%2F%2Fflaviar.com%2F&cb=35368762773593400term%3Dvalue&shadditional=googletagmanager%3Dtrue%2Cga4%3Dtrue%2Ccriteo%3Dtrue
IP
GET /st?ga_tracking_id=UA-28959768-20&ga_client_id=392760526.1662147404&shpt=Flaviar%20Membership%20%C2%BB%20Fine%20Spirits%20%26%20Whiskey%20Club%20%F0%9F%A5%83%20-%20Flaviar&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-28959768-20%22%2C%22ga_client_id%22%3A%22392760526.1662147404%22%2C%22shpt%22%3A%22Flaviar%20Membership%20%C2%BB%20Fine%20Spirits%20%26%20Whiskey%20Club%20%F0%9F%A5%83%20-%20Flaviar%22%2C%22dcm_cid%22%3A%221662147403.1%22%2C%22dcm_gid%22%3A%22706493816.1662147405%22%2C%22ga_gclid%22%3A%22392760526.1662147404%22%2C%22execution_workflow%22%3A%7B%22iteration%22%3A1%2C%22getClientIdByGA%22%3A%22OK%22%2C%22ga_gclid%22%3A%22OK%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%7D&dcm_cid=1662147403.1&dcm_gid=706493816.1662147405&dxver=4.0.0&shaid=33038&plh=https%3A%2F%2Fflaviar.com%2F&cb=35368762773593400term%3Dvalue&shadditional=googletagmanager%3Dtrue%2Cga4%3Dtrue%2Ccriteo%3Dtrue HTTP/1.1
Host: px.mountain.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Fri, 02 Sep 2022 19:36:49 GMT
content-type: application/javascript;charset=utf-8
access-control-allow-origin: *
p3p: CP="NON DSP COR NID CURa ADMa DEVa PSAa PSDa OUR STP UNI COM NAV INT STA PRE"
set-cookie: guid=965c8342-2af6-11ed-a88f-194f2ebad79f;Domain=mountain.com;Max-Age=63113852;Path=/;SameSite=None;Secure
content-encoding: gzip
connection: close
flaviar.attn.tv/d/?attn_vid=fb29ac8005ae45d49bf218ddddb05dc2
200 OK 0 B URL HTTP/2 flaviar.attn.tv/d/?attn_vid=fb29ac8005ae45d49bf218ddddb05dc2
IP
GET /d/?attn_vid=fb29ac8005ae45d49bf218ddddb05dc2 HTTP/1.1
Host: flaviar.attn.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaviar.com/
Origin: https://flaviar.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 19:36:51 GMT
content-type: application/json
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
access-control-allow-origin: *
x-envoy-upstream-service-time: 4
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7448b2682b1d0b59-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.flaviar.com/build/app.3b7fa6b5.js
200 OK 0 B URL HTTP/2 cdn.flaviar.com/build/app.3b7fa6b5.js
IP
GET /build/app.3b7fa6b5.js HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: application/javascript
date: Fri, 02 Sep 2022 14:14:35 GMT
last-modified: Fri, 02 Sep 2022 14:13:26 GMT
etag: W/"a06ca30ed3db290e50263ed7f1e798a5-1"
cache-control: public, max-age=3888000, immutable
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: cfO6UkQd02nQ8Ry4T1zEkC2mJuI0wPBx_fVUtB036Un6tbe3pgRZdg==
age: 19330
X-Firefox-Spdy: h2
tr.snapchat.com/collector/is_enabled?pids=b838e1c8-e5cb-4d99-bda2-d5594b71ff41&tld=com
200 OK 0 B URL HTTP/2 tr.snapchat.com/collector/is_enabled?pids=b838e1c8-e5cb-4d99-bda2-d5594b71ff41&tld=com
IP
GET /collector/is_enabled?pids=b838e1c8-e5cb-4d99-bda2-d5594b71ff41&tld=com HTTP/1.1
Host: tr.snapchat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaviar.com/
Origin: https://flaviar.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 19:36:47 GMT
access-control-allow-origin: https://flaviar.com
content-type: application/json
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-envoy-upstream-service-time: 0
content-encoding: gzip
vary: Accept-Encoding
server: API Gateway
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.flaviar.com/build/runtime.40e55fc6.js
200 OK 0 B URL HTTP/2 cdn.flaviar.com/build/runtime.40e55fc6.js
IP
GET /build/runtime.40e55fc6.js HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: application/javascript
date: Fri, 02 Sep 2022 14:14:35 GMT
last-modified: Fri, 02 Sep 2022 14:13:22 GMT
etag: W/"5eede038cee30093afd2397603db500f-1"
cache-control: public, max-age=3888000, immutable
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: IHHYuaUoTJOviZtNBRBu_6TaSkCRUYd5aAa0n9Qqbk1WGSWSk1625g==
age: 19330
X-Firefox-Spdy: h2
widget.us.criteo.com/event?a=95340&v=5.12.0&p0=e%3Dce%26m%3D%255B%255D&p1=e%3Dexd%26z%3Dundefined%26site_type%3Dd&p2=e%3Dvh%26tms%3Dgtm-ee-1.1.0&p3=e%3Ddis&adce=1&bundle=yWAMLF9mM0pmdkx5ZU9SZlpPWmlYRjE5VGNDRlhIZGo5Y2NuTVZNeFBIbHZ3N2J6Vm42S2Rma0tjNGZxcGNJeUVQYVY1eWJqUHV4NzBpM1VmeUlGS0pnNW0wTkxIMFRDbiUyRjhlRzBJVVM0ZnQlMkJaQmxJJTJCWUp2eUozMXRKOCUyRm1tYWlUaUVXMVBFcTNzaHdzMDJydGx4T1Z2dlgwQSUzRCUzRA&tld=flaviar.com&dy=1&fu=https%253A%252F%252Fflaviar.com%252F&dtycbr=22291&cs=1---&cv=1
200 OK 0 B URL HTTP/2 widget.us.criteo.com/event?a=95340&v=5.12.0&p0=e%3Dce%26m%3D%255B%255D&p1=e%3Dexd%26z%3Dundefined%26site_type%3Dd&p2=e%3Dvh%26tms%3Dgtm-ee-1.1.0&p3=e%3Ddis&adce=1&bundle=yWAMLF9mM0pmdkx5ZU9SZlpPWmlYRjE5VGNDRlhIZGo5Y2NuTVZNeFBIbHZ3N2J6Vm42S2Rma0tjNGZxcGNJeUVQYVY1eWJqUHV4NzBpM1VmeUlGS0pnNW0wTkxIMFRDbiUyRjhlRzBJVVM0ZnQlMkJaQmxJJTJCWUp2eUozMXRKOCUyRm1tYWlUaUVXMVBFcTNzaHdzMDJydGx4T1Z2dlgwQSUzRCUzRA&tld=flaviar.com&dy=1&fu=https%253A%252F%252Fflaviar.com%252F&dtycbr=22291&cs=1---&cv=1
IP
GET /event?a=95340&v=5.12.0&p0=e%3Dce%26m%3D%255B%255D&p1=e%3Dexd%26z%3Dundefined%26site_type%3Dd&p2=e%3Dvh%26tms%3Dgtm-ee-1.1.0&p3=e%3Ddis&adce=1&bundle=yWAMLF9mM0pmdkx5ZU9SZlpPWmlYRjE5VGNDRlhIZGo5Y2NuTVZNeFBIbHZ3N2J6Vm42S2Rma0tjNGZxcGNJeUVQYVY1eWJqUHV4NzBpM1VmeUlGS0pnNW0wTkxIMFRDbiUyRjhlRzBJVVM0ZnQlMkJaQmxJJTJCWUp2eUozMXRKOCUyRm1tYWlUaUVXMVBFcTNzaHdzMDJydGx4T1Z2dlgwQSUzRCUzRA&tld=flaviar.com&dy=1&fu=https%253A%252F%252Fflaviar.com%252F&dtycbr=22291&cs=1---&cv=1 HTTP/1.1
Host: widget.us.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaviar.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 19:36:48 GMT
content-type: application/x-javascript
server: Kestrel
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
expires: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
p3p: NON DSP COR CURa PSA PSD OUR BUS NAV STA
timing-allow-origin: *
server-processing-duration-in-ticks: 26585184
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
flaviar.com/
200 OK 0 B IP
GET / HTTP/1.1
Host: flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Fri, 02 Sep 2022 19:36:44 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
set-cookie: PHPSESSID=cc1cb8cd38ecb14dc8852179676904f5; expires=Sat, 03-Sep-2022 19:36:43 GMT; Max-Age=86400; path=/; secure; HttpOnly
cache-control: max-age=0, must-revalidate, private
link: <https://cdn.flaviar.com/build/runtime.40e55fc6.js>; rel="preload"; as="script",<https://cdn.flaviar.com/build/1.99186aeb.js>; rel="preload"; as="script",<https://cdn.flaviar.com/build/2.543c78f7.js>; rel="preload"; as="script",<https://cdn.flaviar.com/build/app.3b7fa6b5.js>; rel="preload"; as="script",<https://cdn.flaviar.com/build/6.ce717dae.js>; rel="preload"; as="script",<https://cdn.flaviar.com/build/app-main.fdede722.js>; rel="preload"; as="script",<https://cdn.flaviar.com/build/4.2a092778.css>; rel="preload"; as="style",<https://cdn.flaviar.com/build/app-style.46a221b5.css>; rel="preload"; as="style",<https://cdn.flaviar.com/build/landing-frontpage.2932a276.css>; rel="preload"; as="style",<https://cdn.flaviar.com/build/menu-style.8c47cd30.css>; rel="preload"; as="style"
expires: Fri, 02 Sep 2022 19:36:44 GMT
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=15552000; includeSubDomains; preload
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=93mmxUmN18UlHnV3IFgNTbohAq%2FOjs6L80S%2FFQsAfklwsWB%2BEhJoS06Erj40ZBEBy34LFIUa6t2mUnce9vYxGQDTjFiSeOw0TW64jaRnAaN7SySCID1rGqSa2%2Bfk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7448b239a980b51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.flaviar.com/build/images/landingPage/frontpage/01_icon_gift_hover.e2eb5fbd.svg
200 OK 0 B URL HTTP/2 cdn.flaviar.com/build/images/landingPage/frontpage/01_icon_gift_hover.e2eb5fbd.svg
IP
GET /build/images/landingPage/frontpage/01_icon_gift_hover.e2eb5fbd.svg HTTP/1.1
Host: cdn.flaviar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaviar.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
date: Sat, 30 Jul 2022 08:27:07 GMT
last-modified: Mon, 25 Jul 2022 08:05:49 GMT
etag: W/"63be925835bdc79e525217812114992c-1"
cache-control: public, max-age=3888000, immutable
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: rbl8idOeZ-VESBJqoUTM9dUSPM5hKrih6nk4nbbWhN6VTaiJwwT-nw==
age: 2977777
X-Firefox-Spdy: h2
widget.trustpilot.com/trustboxes/5419b6ffb0d04a076446a9af/main.js
0 B URL widget.trustpilot.com/trustboxes/5419b6ffb0d04a076446a9af/main.js
IP
GET /trustboxes/5419b6ffb0d04a076446a9af/main.js HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://widget.trustpilot.com/trustboxes/5419b6ffb0d04a076446a9af/index.html?templateId=5419b6ffb0d04a076446a9af&businessunitId=5c63d6134064df0001fff3b7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
172.66.43.165
34.253.98.74
104.18.32.68
104.110.3.72
178.250.2.140
37.157.5.142
185.89.210.82
185.64.190.80
31.13.72.12
141.226.228.48