r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash cdbad2434b7d127a4fc769807a9dc3e7
fa98cd9fc2309ab4423f33f683d17bdb17d76713
560cbbb751ab2884024da3b93fba6bc45c6434797dba72a98c05e7fc2bb94bc1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "560CBBB751AB2884024DA3B93FBA6BC45C6434797DBA72A98C05E7FC2BB94BC1"
Last-Modified: Sat, 26 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4299
Expires: Sun, 27 Nov 2022 20:06:13 GMT
Date: Sun, 27 Nov 2022 18:54:34 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 64b2a23eab6e5ae8c010ec7242be930c
0673e4385ba01a5a245711bab96cafc34f765793
64751d193f7af72431e9689581faffcae1a30ff50ea425697b2b80ff61c87909
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4131
Cache-Control: max-age=146730
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 18:54:34 GMT
Etag: "63833c71-1d7"
Expires: Tue, 29 Nov 2022 11:40:04 GMT
Last-Modified: Sun, 27 Nov 2022 10:31:13 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 567df7db606cf5d0871aa5bc9311b6da
4263faac7cbab2fcaf6661911dcad5091c06be17
e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 27 Nov 2022 18:19:23 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2111
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 71f9c681a82440fd55e76c780a20e55d
3147768cfbcdd06e0c6e69684292e68e99917a80
5ea71ce6dd9e927f9bb3f97f59cc1ac7dc25a949024815965b29bc5835614786
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5EA71CE6DD9E927F9BB3F97F59CC1AC7DC25A949024815965B29BC5835614786"
Last-Modified: Sat, 26 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9897
Expires: Sun, 27 Nov 2022 21:39:31 GMT
Date: Sun, 27 Nov 2022 18:54:34 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: j8Lt7UaOz4VxgwxviCtLeLXgghOjKBiDTQ8tdVr0mgBMsP5AXnNn+nZmCyx4LpNwUl4iJNkQ9o8=
x-amz-request-id: T18ZZKWGRKTTP83D
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 27 Nov 2022 18:41:44 GMT
age: 770
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 18:54:34 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
kiindred.co/
104.21.91.170301 Moved Permanently 162 B IP 104.21.91.170:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: kiindred.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sun, 27 Nov 2022 18:54:35 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://kiindred.co/
CF-Cache-Status: DYNAMIC
ki-cache-type: None
Ki-CF-Cache-Status: BYPASS
ki-edge: v=17.9
Ki-Edge-o2o: yes
X-Content-Type-Options: nosniff
X-Edge-Location-Klb: 1
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GuRuc0dJB99E8bvl%2BAb15YujiaE%2Fc81WWBLfqHqPja8yefZAwdmtCog7WMnx%2BUpaQB9SS6AzO3NccxRt8aRCaqfASAPAJ%2FTZed3kI8RL5xfngvYM585L6w9xFZwO"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 770d12ba1f28b515-OSL
alt-svc: h2=":443"; ma=60
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 4ebc692f1cc2412ac5e8c0b0030d8763
c1606da4e92c46ff66ddbc1661c179d640cf6ebe
9ddfc5fa8ad3e2c396562a7693f3139e9d900d82b67048257f5755cb1b8efeba
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 18:54:35 GMT
Server: ECS (amb/6BA7)
Content-Length: 279
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 27 Nov 2022 18:08:54 GMT
cache-control: public,max-age=3600
age: 2741
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a6fee11dfe1b88cd768a0ca3e2bd0c89
59cec9a44a4a92467678afe65f347f68641a2174
50870c499aae4d5dfd6df25a36cd04b6d185b66ef0590e46933984bf52e2483f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6256
Cache-Control: max-age=143793
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 18:54:35 GMT
Etag: "638328ac-1d7"
Expires: Tue, 29 Nov 2022 10:51:08 GMT
Last-Modified: Sun, 27 Nov 2022 09:06:52 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.36.24.174101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.36.24.174:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 98tkCwoBzeNLqSM6maO/6g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 5UpnbNbkcfiXLveOlDPYs1Rk98E=
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 4ebc692f1cc2412ac5e8c0b0030d8763
c1606da4e92c46ff66ddbc1661c179d640cf6ebe
9ddfc5fa8ad3e2c396562a7693f3139e9d900d82b67048257f5755cb1b8efeba
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 18:54:36 GMT
Last-Modified: Sun, 27 Nov 2022 18:54:35 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 0ba601ea7ca6b9a8a498513ab6b67b67
7484527b1c7e1e74249a27ba155f54b7a35c32cf
27f3191d3f3ea65d400873a9e5585a9fb4cbde8eabb57fe1e811eb2a45229be1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4001
Cache-Control: max-age=97648
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 18:54:36 GMT
Etag: "63827d3b-117"
Expires: Mon, 28 Nov 2022 22:02:04 GMT
Last-Modified: Sat, 26 Nov 2022 20:55:23 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 0ee1d1a60ec1770ec3e880a25c257f5d
015b05feff63bdcf8fae4d1a8c0c83c923a2ca67
b6845619444a37f322c044933a44cf3fd283a18a54d03bad4f76a2ed8c2cbaf6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 18:54:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 0ee1d1a60ec1770ec3e880a25c257f5d
015b05feff63bdcf8fae4d1a8c0c83c923a2ca67
b6845619444a37f322c044933a44cf3fd283a18a54d03bad4f76a2ed8c2cbaf6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 18:54:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=AW-812736345
142.250.74.168200 OK 53 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=AW-812736345
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash a7614fc9f36e23bd1c2db9bf7bbd224f
7d417c39232b44143df5786f2b74c896cda5c82e
53446faa05c864d8185f66ff8e112840fa7d451206b95da0e48d273e6d3abca7
GET /gtag/js?id=AW-812736345 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 27 Nov 2022 18:54:36 GMT
expires: Sun, 27 Nov 2022 18:54:36 GMT
cache-control: private, max-age=900
last-modified: Sun, 27 Nov 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 53028
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-122583924-1
142.250.74.168200 OK 45 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-122583924-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash e27d50cf8c7f9ce211e28070369e9041
99529acf31a3e98cfbb7b159ab1a198b962dc5ae
d07751cb8588fe7b6cac3a50a997f59f2126f8d0f58aaf9c712f336379a7fb98
GET /gtag/js?id=UA-122583924-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 27 Nov 2022 18:54:36 GMT
expires: Sun, 27 Nov 2022 18:54:36 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44701
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 0ee1d1a60ec1770ec3e880a25c257f5d
015b05feff63bdcf8fae4d1a8c0c83c923a2ca67
b6845619444a37f322c044933a44cf3fd283a18a54d03bad4f76a2ed8c2cbaf6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 18:54:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 5795181ee8d7335e4f0c4d3a3e56ccbf
8c7d7518a86a4fad5cefd430cc88c74c9a9e068a
183dfc1b099cfdf2bb0f925bbce10a6af8ba716b80acfcfec4b3331a0237485e
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 27 Nov 2022 18:54:36 GMT
Last-Modified: Sun, 27 Nov 2022 18:30:38 GMT
Server: ECS (dcb/7EA6)
X-Cache: Miss from cloudfront
Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: lKXDLGMcuMFnnCLUHkM41uJnuajekhALKrn2XAq36qWfXSulP0VbTg==
Age: 1438
cdn.jsdelivr.net/npm/@fancyapps/fancybox@3.5.6/dist/jquery.fancybox.min.css
151.101.85.229200 OK 3.1 kB URL HTTP/2 cdn.jsdelivr.net/npm/@fancyapps/fancybox@3.5.6/dist/jquery.fancybox.min.css
IP 151.101.85.229:0
File type ASCII text, with very long lines (12795), with no line terminators
Hash 18b46dae08e98971b16123ea48913d23
e0a1aa82445a38538413b488924613c44861c59d
62c06f2ea24cfdf0003164fca05560cc8b5333f6ef312016458e05ecbb7c8f62
GET /npm/@fancyapps/fancybox@3.5.6/dist/jquery.fancybox.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 3.5.6
x-jsd-version-type: version
etag: W/"31fb-G+m3m+AqHPxdlsSl4P649HK6vZU"
content-encoding: gzip
accept-ranges: bytes
date: Sun, 27 Nov 2022 18:54:36 GMT
age: 3241833
x-served-by: cache-fra-eddf8230067-FRA, cache-bma1652-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 3096
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP 104.18.20.226:0
Hash 37c8e223a5951bc9f8a26c6d5c53ba52
c21c2ab40f3f0d121f042877fa8a2dfa03a001bf
e252856d7d231ac631326cae077cca818681c0590c80222a72eaaac0c4aea46a
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 18:54:36 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "7F6EC46B11ABE1AB5D306134F493E435FC36A4CC"
Expires: Mon, 28 Nov 2022 05:00:00 GMT
Last-Modified: Sun, 27 Nov 2022 17:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 2858
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 770d12c79eb7b4fd-OSL
cdn.jwplayer.com/libraries/sWym41ZC.js?ver=6.1.1
54.230.111.23200 OK 46 kB URL HTTP/2 cdn.jwplayer.com/libraries/sWym41ZC.js?ver=6.1.1
IP 54.230.111.23:0
File type Unicode text, UTF-8 text, with very long lines (65143)
Hash c7e6b8c3efb824fb008b06e47f37dc39
8fbefd5966c44967fc18d154526246d3c637b98b
1cd17bb1665a977fe9c49377c5c5c70c4c7fc25e77bd12476d05784151741389
GET /libraries/sWym41ZC.js?ver=6.1.1 HTTP/1.1
Host: cdn.jwplayer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-length: 45838
access-control-allow-origin: *
cache-control: max-age=180
content-encoding: gzip
date: Sun, 27 Nov 2022 18:54:36 GMT
server: openresty
x-robots-tag: noindex, indexifembedded
x-cache: Miss from cloudfront
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0cFhp7Ow5zNbmiZ4qOc5276FwUK16-FbPa6uZ6AGrGijcAJKpsdJww==
X-Firefox-Spdy: h2
trackcmp.net/t_prism_sitemessages.php?trackid=610418816&prismid=4d81a89c-e0cf-4d59-a716-665a9181325c&url=https%3A%2F%2Fkiindred.co%2F
104.18.42.105200 OK 2.6 kB URL HTTP/2 trackcmp.net/t_prism_sitemessages.php?trackid=610418816&prismid=4d81a89c-e0cf-4d59-a716-665a9181325c&url=https%3A%2F%2Fkiindred.co%2F
IP 104.18.42.105:0
Hash 20e2d172658da9052f50e43567d56358
e587c52216eee831125de50d126f9e96dbe1979c
8f288156c6cbc118f7f247a84e7a2cb2a42c268032077a836a44c313ef0ecb91
GET /t_prism_sitemessages.php?trackid=610418816&prismid=4d81a89c-e0cf-4d59-a716-665a9181325c&url=https%3A%2F%2Fkiindred.co%2F HTTP/1.1
Host: trackcmp.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 18:54:36 GMT
content-type: text/javascript;charset=UTF-8
content-length: 0
x-powered-by: PHP/7.1.33
cache-control: no-cache, private
p3p: CP="NON BUS INT NAV COM ADM CON CUR IVA IVD OTP PSA PSD TEL SAM"
x-privacy-policy: You can find our privacy policy here: https://www.activecampaign.com/help/privacy-policy/
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 770d12c76e74b4fd-OSL
X-Firefox-Spdy: h2
sdki.truepush.com/sdk/v2.0.4/app.js
54.230.111.84200 OK 581 B URL HTTP/2 sdki.truepush.com/sdk/v2.0.4/app.js
IP 54.230.111.84:0
File type ASCII text, with very long lines (1126), with no line terminators
Hash e845fbcf21da794b6108ce90f9f43a77
987f8c29475096ecfef008b5d2a19b2c83c2c9aa
7d31e48414c6ae395b5eb71a490845dcc26584381872f8fa44d29d33ab595c79
GET /sdk/v2.0.4/app.js HTTP/1.1
Host: sdki.truepush.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 581
date: Mon, 31 Oct 2022 07:49:05 GMT
last-modified: Wed, 27 Jul 2022 04:37:19 GMT
etag: "e845fbcf21da794b6108ce90f9f43a77"
cache-control: max-age=86400
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ft21SrSGcz5JReA-F2s-bvVe5C-B9r1hjP44Wu2N1xwjI9NpmWV1dw==
age: 2372732
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash ebed87c2caeb00f3daca76b91f1d5856
0b524def376f7bf90143e8c002fbbdc776d4b457
9d50a898f0edaf6c38ef9827dcfc72de00b8afd71fde693644c3e7424f6efaa4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5407
Cache-Control: max-age=97238
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 18:54:36 GMT
Etag: "63827623-118"
Expires: Mon, 28 Nov 2022 21:55:14 GMT
Last-Modified: Sat, 26 Nov 2022 20:25:07 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 280
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 37 kB IP 142.250.74.3:0
Hash 8c14e8f169be47e612b91993e6c6cadf
0815ef8362857486727ebd4540486b5cc41bfef0
e46c103e0c34ff4b20d5fa79284fe1e262d08ebb1b9d28132ebdbfd841a1a3da
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 18:54:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdnjs.cloudflare.com/ajax/libs/OwlCarousel2/2.3.4/owl.carousel.min.js?ver=215214318
104.17.25.14200 OK 10 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/OwlCarousel2/2.3.4/owl.carousel.min.js?ver=215214318
IP 104.17.25.14:0
File type ASCII text, with very long lines (31997)
Hash da09af9c30411ac4ea58fa932c2bcdf1
3021a222be0168efcad5db279a305485935aeff5
19e819601b91eb75c0609dd6343a344f280a94b83e06e58595bafff5b12ca7f4
GET /ajax/libs/OwlCarousel2/2.3.4/owl.carousel.min.js?ver=215214318 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 18:54:36 GMT
content-type: application/javascript; charset=utf-8
content-length: 10158
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03cf0-ad36"
last-modified: Mon, 04 May 2020 16:04:00 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 3376328
expires: Fri, 17 Nov 2023 18:54:36 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ToRYpvRJaEtTT30tVbaAg30tQ%2B%2BRBt93LK7sbt76h9q0sCM6NCPoFmyI2hNjw4c3lEiEFpCYBIs4U2QlLGB1G1nWJ%2FBMnewu%2FfJexYqBNGfusZZONLsSjAl3LuUA4fuK9UOxWuAs"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 770d12c8c9c1b503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
sleeknotecustomerscripts.sleeknote.com/31291.js
143.204.55.123200 OK 21 B URL HTTP/2 sleeknotecustomerscripts.sleeknote.com/31291.js
IP 143.204.55.123:0
File type very short file (no magic)
Hash ac9f02b3a33550e7d565636540428067
c9a4b0d05aa8e08bfde8eed97fa290f01338657e
c3368f96d6f6fef22ccc1ea7c68ccaec8b21deeb9462441eeeabba685796e497
GET /31291.js HTTP/1.1
Host: sleeknotecustomerscripts.sleeknote.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-length: 21
last-modified: Fri, 25 Mar 2022 08:16:14 GMT
content-encoding: gzip
x-amz-version-id: dd1zXexbNiRkzib6c0bAA19IeotQ.JUj
accept-ranges: bytes
server: AmazonS3
date: Sun, 27 Nov 2022 18:54:37 GMT
cache-control: max-age=60
etag: "ac9f02b3a33550e7d565636540428067"
x-cache: RefreshHit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: NlG_ra05DNqsbaLu_oqAUPAC1-Rm06KuSOXgOsj8Ms7r1WkuPwphMA==
X-Firefox-Spdy: h2
s.skimresources.com/js/194956X1672608.skimlinks.js
151.139.128.10200 OK 19 kB URL HTTP/2 s.skimresources.com/js/194956X1672608.skimlinks.js
IP 151.139.128.10:0
File type ASCII text, with very long lines (555)
Hash 09464d2b181f031062f3929004922709
c122e0e590eb2443aebade6c7a005e5bea0de916
05d46c0e8d13e7e79f09504cacb708326e7a12102e5bdc014d91f9ec42a82035
GET /js/194956X1672608.skimlinks.js HTTP/1.1
Host: s.skimresources.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 18:54:36 GMT
cache-control: max-age=3600
content-encoding: gzip
content-length: 18866
content-type: application/octet-stream
last-modified: Tue, 30 Aug 2022 08:51:43 GMT
accept-ranges: bytes
x-amz-id-2: sNYLAP5B1DFQOJ3kZn05+hEXhaYLR/Ajx9Hd6nPjhOJn0fp4ZM7nIH7OCyaGMbXN+6M8cYVpKpQ=
x-amz-request-id: K7X68X5HCA1S7WQV
etag: "2cca17d1576ab4be3a2b3e0ebfc2b60c"
server: AmazonS3
x-hw: 1669575276.cds210.sk1.hn,1669575276.cds231.sk1.c
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js
142.250.74.170200 OK 35 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js
IP 142.250.74.170:0
Hash 9f13708b990e4aff6cbf74d2c82769ab
dd825c0f3bb58e89590590d0285c6869943f9e13
0182beb749741574d355e236430d302fb6224195403170c5311fd8ba99d03d50
GET /ajax/libs/jquery/3.5.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31021
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 25 Nov 2022 08:46:23 GMT
expires: Sat, 25 Nov 2023 08:46:23 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 209293
last-modified: Fri, 08 May 2020 07:05:03 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash ebed87c2caeb00f3daca76b91f1d5856
0b524def376f7bf90143e8c002fbbdc776d4b457
9d50a898f0edaf6c38ef9827dcfc72de00b8afd71fde693644c3e7424f6efaa4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5407
Cache-Control: max-age=97238
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 18:54:36 GMT
Etag: "63827623-118"
Expires: Mon, 28 Nov 2022 21:55:14 GMT
Last-Modified: Sat, 26 Nov 2022 20:25:07 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 280
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5af61422c4eaa1b995ec63e463abda26
db75634681ed688840773ce828c169ac9da7d131
506791493bb08d458008ad072ac34a26c2170c1e775b83f55f20cd8af97aa895
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 18:54:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 363c312993a3e43ff158d3a9b07a87e9
e22be6a746ae7c1f3d47726bba013f2c6585adaa
72cd121e2498bea681d41df2bb4fbdefbb7c013d82a6b9802ba8e6f090838383
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=144288
Date: Sun, 27 Nov 2022 18:54:37 GMT
Etag: "63833288-1d7"
Expires: Tue, 29 Nov 2022 10:59:25 GMT
Last-Modified: Sun, 27 Nov 2022 09:48:56 GMT
Server: ECS (nyb/1DD2)
X-Cache: Miss from cloudfront
Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: U34Q2Flnvyb39QFKSmh_VhSv1_Ez3lwmFaCB_Y1QFfYwDjiTCl5l_g==
Age: 4229
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 37cec3846cffbc8a252cabd491876b0c
809ce2709bcfc6287629e6b702f392e2c0b291b0
6c2fe5ca4d1a0f68c721a62dd1b2b7b5b45f68f811f0cc38b0c897efaae1bc6f
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=98283
Date: Sun, 27 Nov 2022 18:54:37 GMT
Etag: "638282ab-1d7"
Expires: Mon, 28 Nov 2022 22:12:40 GMT
Last-Modified: Sat, 26 Nov 2022 21:18:35 GMT
Server: ECS (nyb/1D20)
X-Cache: Miss from cloudfront
Via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: vrU1CHnXyoHVvPplHb_iKejzCVARgiMAgEvZ19N0KrSnbkPfRB0cxQ==
Age: 3245
addevent.com/libs/atc/1.6.1/atc.min.js
52.210.51.180301 Moved Permanently 134 B URL HTTP/2 addevent.com/libs/atc/1.6.1/atc.min.js
IP 52.210.51.180:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4aa7a432bb447f094408f1bd6229c605
1965c4952cc8c082a6307ed67061a57aab6632fa
34ccdc351dc93dbf30a8630521968421091e3ed19c31a16e32c2eabb55c6a73a
GET /libs/atc/1.6.1/atc.min.js HTTP/1.1
Host: addevent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: awselb/2.0
date: Sun, 27 Nov 2022 18:54:37 GMT
content-type: text/html
content-length: 134
location: https://cdn.addevent.com:443/legacy2000/libs/atc/1.6.1/atc.min.js
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7251
Expires: Sun, 27 Nov 2022 20:55:28 GMT
Date: Sun, 27 Nov 2022 18:54:37 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 1.6 kB IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ae2eea2b41efa7816e9c00a8ad9a17e6
fbd7b8d6546036020fa852599623e86e2c4e6787
6bd0f17862965bfbb8165d4d86bca7bdd5f181d85f8c52e0b64c0be91d506ed1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7251
Expires: Sun, 27 Nov 2022 20:55:28 GMT
Date: Sun, 27 Nov 2022 18:54:37 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7251
Expires: Sun, 27 Nov 2022 20:55:28 GMT
Date: Sun, 27 Nov 2022 18:54:37 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7251
Expires: Sun, 27 Nov 2022 20:55:28 GMT
Date: Sun, 27 Nov 2022 18:54:37 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7251
Expires: Sun, 27 Nov 2022 20:55:28 GMT
Date: Sun, 27 Nov 2022 18:54:37 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2cd887044e91d7ed0f1a8d7119ff7dd0
ae8aa4ce6ddaccba771fe65446926b60fc5628da
bad283c15531000b7a8c126d442154b64a880cc26196a46cbd2e6266a526db67
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10199
x-amzn-requestid: baee3bbe-7ded-425a-ae39-fccfc8169217
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iF1VIAMF09g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-5522727b2f09b27e63b23270;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: K2eKLQhrsCdd4ASsfEibRuZAYW4CpPTlO3fZs7xdoKrw1HBxfTGkEA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:42:14 GMT
etag: "ae8aa4ce6ddaccba771fe65446926b60fc5628da"
content-type: image/jpeg
age: 76343
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F297e7532-86f8-4631-9062-cdd6a291b40b.jpeg
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F297e7532-86f8-4631-9062-cdd6a291b40b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 433875a1b1fef34e45f2d8ac344c07e3
f2129466436cbbdd58abe42a47fb7af19eba58e6
ab1e7b46f3804640c7dd94d70c8c31ec2dfc3e2f0f015a8556d04d9d9089c450
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F297e7532-86f8-4631-9062-cdd6a291b40b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5099
x-amzn-requestid: 57648043-7820-453d-9549-0f743b6c2557
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4jFBvoAMFl1w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-53b59d607b82c264180f469d;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: VsdLWuh4rCawI5V0YYGaHxEMl2YEVNgsbjfCwzDsrnCZhRK2FkCkVw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:42:14 GMT
etag: "f2129466436cbbdd58abe42a47fb7af19eba58e6"
content-type: image/jpeg
age: 76343
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34752db1-0be8-4784-9fa0-41e828e40e06.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34752db1-0be8-4784-9fa0-41e828e40e06.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1db6041a0bdb2319ae85afcc30caaeec
3b0ec6a7188dadf986f72fda8110296d9abd6f35
05f1f9b7834e7268dc34e3233434217f58cb68ee43a403cd08d0bb0ab4f37815
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34752db1-0be8-4784-9fa0-41e828e40e06.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13049
x-amzn-requestid: 2755f206-af23-4597-b4b9-7dae5001d6be
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cBsvpHDJoAMFhFQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637d5b30-600008f573bd7e0024585eb1;Sampled=0
x-amzn-remapped-date: Tue, 22 Nov 2022 23:28:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: y0ofyT6UcPjB8mfRR1VMjHSTW64Qb_EQ0rrjsOdbby1CG-xMIFJMPw==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:49:19 GMT
age: 75918
etag: "3b0ec6a7188dadf986f72fda8110296d9abd6f35"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcfaef414-0c01-4bb9-800d-29da0ef5607d.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcfaef414-0c01-4bb9-800d-29da0ef5607d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4e97baa4851785eac92c719abf481c64
c32a57038d3cdbc514c9081c9938eca6a04fb481
adb59e982648082e5421f58899a5331b2747e9d45be33c495fbe3ab8cc872b22
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcfaef414-0c01-4bb9-800d-29da0ef5607d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8387
x-amzn-requestid: fc238ea9-0169-47fc-b92e-f12b3ee27c72
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b433YGtOoAMFexg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6379d362-2f97c67a2e5f05b6746cf858;Sampled=0
x-amzn-remapped-date: Sun, 20 Nov 2022 07:12:34 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: oMrdB0NUGe5CqTY7eFd3u8xaSy9TyDdOrf1awBikFJzm3jWreD2irQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 82c2ab57bc9900898383f6b70681b9e6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 12:30:20 GMT
age: 23057
etag: "c32a57038d3cdbc514c9081c9938eca6a04fb481"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0b2959f-9d1d-41c7-a7c1-b9f52a7766ac.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0b2959f-9d1d-41c7-a7c1-b9f52a7766ac.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 76c00eceed956377d7469ef58b0815cb
97a135335f5b1b042adeb385718f8808cb78528b
81fb72ab752b2eb39ab6ee015055304490b3b6c3259968703fd07c2a2eed1e61
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0b2959f-9d1d-41c7-a7c1-b9f52a7766ac.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7380
x-amzn-requestid: 18589644-299c-4a39-9376-db1bd1472009
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iEegIAMFeuQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-23990acc0fdc599a75a534e3;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: RqsZxAtbOkWBGbXJ3sZHxcS-ZvWOw7Yg2Qd4zj0QLhrp3wAXC8w6jA==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:42:14 GMT
etag: "97a135335f5b1b042adeb385718f8808cb78528b"
content-type: image/jpeg
age: 76343
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 841a4b110022a99ddea6f7bf66df0fa1
126771b86638108050cf57c0d12faa27f80f0edb
240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4309
x-amzn-requestid: a22b4d7e-e208-4bda-81c2-d13e6463380e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: blE0hGNioAMF_Tg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6371e81c-1b13846866f56a0e47675e56;Sampled=0
x-amzn-remapped-date: Mon, 14 Nov 2022 07:02:52 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 0sYKpJWi2Tv9Atz3PYXm5j7kmncAOxjcLcK4hgAkJ5b4pNMDmjdB6g==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 05:54:16 GMT
age: 46821
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
region1.analytics.google.com/g/collect?v=2&tid=G-GDSLZ6B0G9>m=2oeb90&_p=1194496794&_gaz=1&cid=2111673641.1669575277&ul=en-us&sr=1280x1024&_s=1&sid=1669575276&sct=1&seg=0&dl=https%3A%2F%2Fkiindred.co%2F&dt=Supporting%20the%20modern%20Parent%20through%20Fertility%2C%20Pregnancy%20and%20Parenthood&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-GDSLZ6B0G9>m=2oeb90&_p=1194496794&_gaz=1&cid=2111673641.1669575277&ul=en-us&sr=1280x1024&_s=1&sid=1669575276&sct=1&seg=0&dl=https%3A%2F%2Fkiindred.co%2F&dt=Supporting%20the%20modern%20Parent%20through%20Fertility%2C%20Pregnancy%20and%20Parenthood&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-GDSLZ6B0G9>m=2oeb90&_p=1194496794&_gaz=1&cid=2111673641.1669575277&ul=en-us&sr=1280x1024&_s=1&sid=1669575276&sct=1&seg=0&dl=https%3A%2F%2Fkiindred.co%2F&dt=Supporting%20the%20modern%20Parent%20through%20Fertility%2C%20Pregnancy%20and%20Parenthood&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://kiindred.co
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://kiindred.co
date: Sun, 27 Nov 2022 18:54:37 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 770555aa8a0a52c611bafb289ca8a650
62504cadc49747f328e3c31ad3aa7a740043072c
6317c8530220392b1339be640b8c1181c468ff8e3f3d1d5692b39cb32404216f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 18:54:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.addevent.com/legacy2000/libs/atc/1.6.1/atc.min.js
143.204.55.38200 OK 19 kB URL HTTP/2 cdn.addevent.com/legacy2000/libs/atc/1.6.1/atc.min.js
IP 143.204.55.38:0
Hash c3ebc926c53025b6ffab44cf7521c19e
285659b9d66cad915828ffa2c175faae2f595362
0aa638f8d862e5b6f9a4be80c33728ebfb437ea690fe0d4040db71f2a8bcb077
GET /legacy2000/libs/atc/1.6.1/atc.min.js HTTP/1.1
Host: cdn.addevent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://kiindred.co/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 16 Jun 2022 09:22:36 GMT
server: AmazonS3
content-encoding: gzip
date: Sun, 27 Nov 2022 09:53:55 GMT
etag: W/"d4881a6054da56bd933dff9367745f8c"
x-cache: Hit from cloudfront
via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: X-wMMtsuY5zXxu4fAFsOg1YouEEITk5Dxp3ViUh0poreMglW3y1FSQ==
age: 53182
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 770555aa8a0a52c611bafb289ca8a650
62504cadc49747f328e3c31ad3aa7a740043072c
6317c8530220392b1339be640b8c1181c468ff8e3f3d1d5692b39cb32404216f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 18:54:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
sdki.truepush.com/sdk/version.json
54.230.111.84200 OK 176 B URL HTTP/2 sdki.truepush.com/sdk/version.json
IP 54.230.111.84:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 327739750637fd5a1dd49dd855637862
262da8e22f5386f687478704a58b5117ac3f70d0
4ecf24b7db78a8e99bb3c0581cc859f5edc4ef62e682d91e963ff3e9f8763c62
GET /sdk/version.json HTTP/1.1
Host: sdki.truepush.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://kiindred.co
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
content-length: 176
last-modified: Wed, 27 Jul 2022 05:36:06 GMT
accept-ranges: bytes
server: AmazonS3
date: Tue, 08 Nov 2022 23:07:24 GMT
cache-control: max-age=300
etag: "327739750637fd5a1dd49dd855637862"
x-cache: Hit from cloudfront
via: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: YGf6MVx9fNGFyE6zQ2PSpVZ2BprIOcUlhI0r1x100R71jsiL53Hhkw==
age: 1626437
X-Firefox-Spdy: h2
sdki.truepush.com/sdk/v2.0.4/main.js
54.230.111.84200 OK 19 kB URL HTTP/2 sdki.truepush.com/sdk/v2.0.4/main.js
IP 54.230.111.84:0
File type Unicode text, UTF-8 text, with very long lines (65535), with no line terminators
Hash 3d47f45ecfb765f8b8b58d2a4b1883fb
b868b52238c9648b02be59da2431cb4d3f49dd30
6192f661e7e9c4dd693ed57dc101347c787313c8ec766dd853b34e3a20518033
GET /sdk/v2.0.4/main.js HTTP/1.1
Host: sdki.truepush.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 18934
last-modified: Wed, 27 Jul 2022 04:37:19 GMT
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
date: Sat, 05 Nov 2022 07:07:16 GMT
cache-control: max-age=86400
etag: "3d47f45ecfb765f8b8b58d2a4b1883fb"
x-cache: Hit from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: hYY0dE540Tg8EsmIlCumBcPnfglTU_4auPqJ5vjFaGzhrMOQjd4tEA==
age: 1943260
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/events.js?sdkid=CBTDVJBC77UBFBMM2NN0&lib=ttq
23.36.79.17200 OK 45 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/events.js?sdkid=CBTDVJBC77UBFBMM2NN0&lib=ttq
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (65467)
Hash 75f2cfd719238a3d312b1218fd6d9f78
e41b2230206d8627ceb16399d6672c51001669b7
3c9ef30257d39f5bdbab300dfc8093fc7a053d398137158ee932bf1485d48aea
GET /i18n/pixel/events.js?sdkid=CBTDVJBC77UBFBMM2NN0&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 2022112718543877AD78C1424C44F74AF9
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf601c5f6a04a777121cde7d9af65489455eb8fcdd59b18318910e83f925f2d50ec876f5196536963036ba089b1264c367889f9136be76a93fdb8029dfe3ae9549e1
content-encoding: gzip
expires: Sun, 27 Nov 2022 18:54:38 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 27 Nov 2022 18:54:38 GMT
content-length: 45142
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=4, cdn-cache; desc=MISS, edge; dur=2, origin; dur=121
x-origin-response-time: 121,23.36.79.13
x-akamai-request-id: 924d2352
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash abfb0b70c78439e678b7bb6f96c4ad08
930cba90c67897454bc0f94ee5f2e46206351f8c
12cce3f6e64d517d92adf2fe321ee42bedfa2828efd75292af85fb820436bfc4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 18:54:39 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 25 Nov 2022 06:43:24 GMT
Expires: Fri, 02 Dec 2022 06:43:23 GMT
Etag: "930cba90c67897454bc0f94ee5f2e46206351f8c"
Cache-Control: max-age=387523,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 770d12d69b61b511-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 3.0 kB IP 104.18.32.68:0
Hash 90d2d9949cc4b8775df4658366e1eee1
bc7df699d7f118d98ec449e21c34b6dac8129d35
998f9ad04a0a3b9b32bc4524bd452eb79e1d7345fd1de0dd4c67f0c937d45081
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 18:54:39 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 25 Nov 2022 06:43:24 GMT
Expires: Fri, 02 Dec 2022 06:43:23 GMT
Etag: "930cba90c67897454bc0f94ee5f2e46206351f8c"
Cache-Control: max-age=387523,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 770d12d6ae970af6-OSL
fonts.googleapis.com/css2?family=Inter&family=Open+Sans:ital,wght@0,400;0,600;1,400&display=swap
142.250.74.10200 OK 906 B URL HTTP/2 fonts.googleapis.com/css2?family=Inter&family=Open+Sans:ital,wght@0,400;0,600;1,400&display=swap
IP 142.250.74.10:0
Hash 5fca094beb0d5828c64bd9965774b28f
f5f1d941bdd81ae19f4a984a7d7dbd6a41f9979a
5ba0b25c4296408102bc4ce125455c1e0f988f6af8847cdb88d2ba28f204fa13
GET /css2?family=Inter&family=Open+Sans:ital,wght@0,400;0,600;1,400&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 27 Nov 2022 18:54:39 GMT
date: Sun, 27 Nov 2022 18:54:39 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
sdk.truepush.com/api/v2/truepushSDKPlatfromDetails
103.146.40.154204 No Content 0 B URL HTTP/1.1 sdk.truepush.com/api/v2/truepushSDKPlatfromDetails
IP 103.146.40.154:0
ASN #18229 CtrlS Datacenters Ltd.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v2/truepushSDKPlatfromDetails HTTP/1.1
Host: sdk.truepush.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://kiindred.co/
Origin: https://kiindred.co
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: nginx/1.16.1
Date: Sun, 27 Nov 2022 18:54:38 GMT
Content-Length: 0
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: https://kiindred.co
Vary: Origin, Access-Control-Request-Headers
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET,HEAD,PUT,PATCH,POST,DELETE
Access-Control-Allow-Headers: content-type
static.alliai.com/widget/v1.js
143.204.55.7200 OK 41 kB URL HTTP/2 static.alliai.com/widget/v1.js
IP 143.204.55.7:0
Hash a24f360186e316d04d20632d45ad8c48
58e0e8445066843b849dbf424ffe706e1eff1845
f344eec6e3ab4a0dd4ec105cab3d3f2a15c5f918ab90e9ed4d9c61e5943390ea
GET /widget/v1.js HTTP/1.1
Host: static.alliai.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 26 Oct 2022 17:08:33 GMT
server: AmazonS3
content-encoding: gzip
date: Sat, 26 Nov 2022 20:43:02 GMT
cache-control: max-age=86400
etag: W/"4302c09fc1854bb35391bc539fe10428"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 5CxGA-NOJOwF-7QDkWqkT81vnmVZLuY6K1xdkIDk4Um2AbjwlJ_bfg==
age: 79894
X-Firefox-Spdy: h2
sdk.truepush.com/api/v2/truepushSDKPlatfromDetails
103.146.40.154200 OK 108 B URL HTTP/1.1 sdk.truepush.com/api/v2/truepushSDKPlatfromDetails
IP 103.146.40.154:0
ASN #18229 CtrlS Datacenters Ltd.
File type JSON data\012- , ASCII text, with no line terminators
Hash 807fdb356759b70c17e4134a02a50442
20866f6a488709cdf2957dca91b812e2f122d063
bb26329f6dbe7669b732c5dad2c9234ad356c6143dea8817ec7cdc9920ca4727
POST /api/v2/truepushSDKPlatfromDetails HTTP/1.1
Host: sdk.truepush.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 76
Origin: https://kiindred.co
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Sun, 27 Nov 2022 18:54:38 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 108
Connection: keep-alive
Access-Control-Allow-Origin: https://kiindred.co
Vary: Origin, X-HTTP-Method-Override, Accept-Encoding
Access-Control-Allow-Credentials: true
Content-Security-Policy: img-src * data:
X-DNS-Prefetch-Control: off
Expect-CT: max-age=0
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=15552000; includeSubDomains
X-Download-Options: noopen
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: no-referrer
X-XSS-Protection: 0
Set-Cookie: XSRF-TOKEN=3144cfb3-10fa-5769-9978-1d754ccbca25; Domain=.truepush.com; Path=/; Expires=Wed, 22 Sep 2032 10:51:05 GMT
sessionId=746da27a-3cac-57a3-a275-bd1247f32345; Domain=.truepush.com; Path=/; Expires=Wed, 22 Sep 2032 10:51:05 GMT; HttpOnly
tp=j%3A%226383b26eb71e09bda91440c5%22; Domain=.truepush.com; Path=/; Expires=Wed, 22 Sep 2032 10:51:05 GMT; HttpOnly
ETag: W/"6c-IIZvakiHCc3ylX3KkbgS4vEi0GM"
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1def611ed1604b222e2c1b4e5b4dbbb3
efab3f910adb2498ed4aa794df938959e861b0f1
e455592a25ecac760d03d4ca2ff3ec5a74332ff8e4d9d38384390a20d3e959f7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4243
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 18:54:40 GMT
Last-Modified: Sun, 27 Nov 2022 17:43:57 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
websdk.appsflyer.com/?st=banners&
23.36.76.209200 OK 12 kB URL HTTP/1.1 websdk.appsflyer.com/?st=banners&
IP 23.36.76.209:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (21856)
Hash 3cf1cd07cf4839c376fda9bd64d32215
ae37d9cd213f2691c0ceaddc62b34ebccd7a6d1e
a6b6ebe5e6995ba7961cb4cd3bba2bf16616fc4a17b5f742877c79278cb5ce27
GET /?st=banners& HTTP/1.1
Host: websdk.appsflyer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 99BJBD/2FvVOCoD/oYY+KZRaISfkFdc4M50MXBczNX3XjZKiYdmFbqpAhTEyvp+HBe3qYm/7xuQ=
x-amz-request-id: QBCG197V6CJTVD69
Last-Modified: Wed, 27 Apr 2022 08:41:42 GMT
ETag: "08179f9adc55b98cc307cd6770e123ad"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=917
Expires: Sun, 27 Nov 2022 19:09:58 GMT
Date: Sun, 27 Nov 2022 18:54:41 GMT
Content-Length: 11541
Connection: keep-alive
connect.facebook.net/en_US/fbevents.js
31.13.72.12200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (64348)
Hash 44ecaa3c2a4929a40141edc4540aaf84
f29a573182333b2500d41bfc389d6c5232dfb348
6589fe14578dedd4df678a909afadd7e5bc7f57c7e3e24518a7f5faac7383396
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: m/Otru28JA4STw2yZGH2W29gi8RlHKfBFsBJFqN/cRoAeItIO51Jvd1Ujqd1+Zkw1hvznd1F/CKpOIeM+ffHvQ==
content-length: 27340
x-fb-trip-id: 1904183273
date: Sun, 27 Nov 2022 18:54:41 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sun, 27 Nov 2022 18:41:08 GMT
expires: Sun, 27 Nov 2022 20:41:08 GMT
cache-control: public, max-age=7200
age: 813
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-6825110399734618
142.250.74.34200 OK 49 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-6825110399734618
IP 142.250.74.34:0
File type JSON data\012- , ASCII text, with no line terminators
Hash dc0e16e55e399125f21b80d03b49a987
9d48f90e7c72a51f1527f3ea56bd64477c8bb66a
2b4490d2cac2fa75cf5a2d9cd15a690cab5bad5dee1639f559f9c8078f709b15
GET /pagead/js/adsbygoogle.js?client=ca-pub-6825110399734618 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://kiindred.co
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Sun, 27 Nov 2022 18:54:41 GMT
expires: Sun, 27 Nov 2022 18:54:41 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 9248233654721303414
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 49142
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
securepubads.g.doubleclick.net/tag/js/gpt.js
216.58.207.194200 OK 27 kB URL HTTP/2 securepubads.g.doubleclick.net/tag/js/gpt.js
IP 216.58.207.194:0
File type ASCII text, with very long lines (40310)
Hash 3097863d148e6cdfee35da37197a4199
af9c3a80ff613a6a0410ab252f5e2cb06343c85d
59466fd91db19a9c60aa70b5a2b48e21638d0dc554bff4d96a34bf678e174692
GET /tag/js/gpt.js HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 27210
date: Sun, 27 Nov 2022 18:54:41 GMT
expires: Sun, 27 Nov 2022 18:54:41 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
etag: "1404 / 339 of 1000 / last-modified: 1669244741"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
s.adroll.com/j/roundtrip.js
143.204.55.84200 OK 18 kB URL HTTP/1.1 s.adroll.com/j/roundtrip.js
IP 143.204.55.84:0
Hash 4ef8632237aa11ad88240a47930eb750
1c17cb82c58860775ead9babadfbe9df1349039a
0a0619a46a9a87143997482bc5d5622d24769efb485892e20c336f7cdcf71143
GET /j/roundtrip.js HTTP/1.1
Host: s.adroll.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 09 Nov 2022 03:05:14 GMT
X-Amz-Server-Side-Encryption: AES256
X-Amz-Version-Id: nyGK.p4AMdUYdI_Cc7_v_Tu8krsmgtEj
Server: AmazonS3
Content-Encoding: gzip
Date: Sun, 27 Nov 2022 18:42:39 GMT
Cache-Control: max-age=3600, must-revalidate
Etag: W/"180f14486064cffef491cd1b7b69c069"
Vary: Accept-Encoding
Via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
Age: 724
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: jSIbw4EHFlkZp1UD1qfyg6-dW16SxSsBwsJmOpl2DxiwyUYzLJJpDA==
s.adroll.com/j/BNCP2FEDFNCZ5OPA3SLMKO/roundtrip.js
143.204.55.84200 OK 18 kB URL HTTP/1.1 s.adroll.com/j/BNCP2FEDFNCZ5OPA3SLMKO/roundtrip.js
IP 143.204.55.84:0
File type ASCII text, with very long lines (1326)
Hash d29e0bdb00bfd8f0a24b1a2f6575249e
8a4908dd26d29c4d32c120140877f567d99e6ebe
501ee01f27b66961eaebe07b406e35220d6eca37e2ffa20aef50a6162195c0b8
GET /j/BNCP2FEDFNCZ5OPA3SLMKO/roundtrip.js HTTP/1.1
Host: s.adroll.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 23 Nov 2022 03:18:35 GMT
X-Amz-Server-Side-Encryption: AES256
X-Amz-Version-Id: lMaOGOgtH8moKI1HxM.7DJxyPIbg9bF5
Server: AmazonS3
Content-Encoding: gzip
Date: Sun, 27 Nov 2022 18:38:33 GMT
Cache-Control: max-age=3600, must-revalidate
Etag: W/"d7d424acbc7069c619a405d6cd3721f6"
Vary: Accept-Encoding
Via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
Age: 969
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: CDqwEMgXpsjSDrTqiOOZdRAnZFbE7ocnWLtqPWWt8oiRzKDQbwx8wQ==
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 32ffdef203c9a117b4fe22dc5acf745b
bda125d3d3ec5b4865fbd6bf0bc2d7e274b53155
08c8f63b6ca88782667096181f206237a037974963638c0508d1a1fb517a8fbf
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5432
Cache-Control: max-age=88960
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 18:54:41 GMT
Etag: "638255b9-1d7"
Expires: Mon, 28 Nov 2022 19:37:21 GMT
Last-Modified: Sat, 26 Nov 2022 18:06:49 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 88e42375d2172305f819b892225cf877
674324641f82700172e72fe259ee2241361e2ea1
6dce3754a67df878b536c368657a492a1f908d408fe7fe5ba43c5d24c44434b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 18:54:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/viewthroughconversion/812736345/?random=1669575276368&cv=11&fst=1669575276368&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fkiindred.co%2F&tiba=Supporting%20the%20modern%20Parent%20through%20Fertility%2C%20Pregnancy%20and%20Parenthood&auid=1979191363.1669575276&data=event%3Dgtag.config&rfmt=3&fmt=4
142.250.74.34200 OK 922 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/812736345/?random=1669575276368&cv=11&fst=1669575276368&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fkiindred.co%2F&tiba=Supporting%20the%20modern%20Parent%20through%20Fertility%2C%20Pregnancy%20and%20Parenthood&auid=1979191363.1669575276&data=event%3Dgtag.config&rfmt=3&fmt=4
IP 142.250.74.34:0
File type ASCII text, with very long lines (1971), with no line terminators
Hash 6d02334c3169e6f9b844f192f43988fd
15d6e4c0b2d0be9568639d0ae86f0e63a6ace8d9
3f18662eb1136e8f94cba1f7c0f9ab330ae7324c48dc4eb1535ccdd23a9b3ea5
GET /pagead/viewthroughconversion/812736345/?random=1669575276368&cv=11&fst=1669575276368&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fkiindred.co%2F&tiba=Supporting%20the%20modern%20Parent%20through%20Fertility%2C%20Pregnancy%20and%20Parenthood&auid=1979191363.1669575276&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 27 Nov 2022 18:54:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 922
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sun, 27-Nov-2022 19:09:41 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
s.pinimg.com/ct/core.js
23.38.200.197200 OK 1.1 kB IP 23.38.200.197:0
File type ASCII text, with very long lines (1146), with no line terminators
Hash 8d9d0550c915347e312e24f00d311e50
cb44712b22cb011b759da4e741b543238839c735
57d73d188a6162bec272876156addbd7b02a2c6941c45653b8d3453e998e0b5b
GET /ct/core.js HTTP/1.1
Host: s.pinimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
etag: "8d9d0550c915347e312e24f00d311e50"
cache-control: max-age=7200
accept-ranges: bytes
content-type: application/javascript
content-length: 1146
vary: Accept-Encoding, Origin
x-cdn: akamai
access-control-max-age: 86400
access-control-expose-headers: X-CDN
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/812736345/?random=1669575276377&cv=11&fst=1669575276377&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fkiindred.co%2F&tiba=Supporting%20the%20modern%20Parent%20through%20Fertility%2C%20Pregnancy%20and%20Parenthood&auid=1979191363.1669575276&data=event%3Dpage_view&rfmt=3&fmt=4
142.250.74.34200 OK 920 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/812736345/?random=1669575276377&cv=11&fst=1669575276377&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fkiindred.co%2F&tiba=Supporting%20the%20modern%20Parent%20through%20Fertility%2C%20Pregnancy%20and%20Parenthood&auid=1979191363.1669575276&data=event%3Dpage_view&rfmt=3&fmt=4
IP 142.250.74.34:0
File type ASCII text, with very long lines (1965), with no line terminators
Hash 0f3073b136ce4994922759f7a316289b
fe6d9258a17ad1cd42d1cb91ce0ed2e8f11bed9f
556c743cc9d5ccb6c7de317dd4d22a0e834c1b72c3884c6f6b3522fccb6eeee1
GET /pagead/viewthroughconversion/812736345/?random=1669575276377&cv=11&fst=1669575276377&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fkiindred.co%2F&tiba=Supporting%20the%20modern%20Parent%20through%20Fertility%2C%20Pregnancy%20and%20Parenthood&auid=1979191363.1669575276&data=event%3Dpage_view&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 27 Nov 2022 18:54:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 920
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sun, 27-Nov-2022 19:09:41 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/812736345/?random=1669575276390&cv=11&fst=1669575276390&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fkiindred.co%2F&tiba=Supporting%20the%20modern%20Parent%20through%20Fertility%2C%20Pregnancy%20and%20Parenthood&auid=1979191363.1669575276&rfmt=3&fmt=4
142.250.74.34200 OK 906 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/812736345/?random=1669575276390&cv=11&fst=1669575276390&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fkiindred.co%2F&tiba=Supporting%20the%20modern%20Parent%20through%20Fertility%2C%20Pregnancy%20and%20Parenthood&auid=1979191363.1669575276&rfmt=3&fmt=4
IP 142.250.74.34:0
File type ASCII text, with very long lines (1909), with no line terminators
Hash a490757cf2d31ac28473ab48cacb0641
7cf6b00704ab8cb43cbc9ec6702bd198ae4f51c5
3fa565cd5ec2326a6a1e25852efdcaae318fc1d1a0e666f2a49f33765615d99c
GET /pagead/viewthroughconversion/812736345/?random=1669575276390&cv=11&fst=1669575276390&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fkiindred.co%2F&tiba=Supporting%20the%20modern%20Parent%20through%20Fertility%2C%20Pregnancy%20and%20Parenthood&auid=1979191363.1669575276&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 27 Nov 2022 18:54:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 906
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sun, 27-Nov-2022 19:09:41 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1def611ed1604b222e2c1b4e5b4dbbb3
efab3f910adb2498ed4aa794df938959e861b0f1
e455592a25ecac760d03d4ca2ff3ec5a74332ff8e4d9d38384390a20d3e959f7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4244
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 18:54:41 GMT
Last-Modified: Sun, 27 Nov 2022 17:43:57 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash d3c9b092aee5820bdab6595daad65d61
89e983faeedf25b3e15696f9bf6dbf76feb07868
58d24c4dde4a578c2c0191a19a5a42bdcb5be03b21a1907f60c8deaee78b7331
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 18:54:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/html/r20221110/r20190131/zrt_lookup.html
142.250.74.34200 OK 4.2 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20221110/r20190131/zrt_lookup.html
IP 142.250.74.34:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2579)
Hash 2fb3574102373e2e076cfa2ff90cdf25
d06c985183def975546d6e47ab6369c11dcf7195
e61cbc207f7fc2f429deceff11e7a339a3d9a9574da6d035054eba02ee381345
GET /pagead/html/r20221110/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kiindred.co/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 4242
x-xss-protection: 0
date: Sun, 27 Nov 2022 10:25:42 GMT
expires: Sun, 11 Dec 2022 10:25:42 GMT
cache-control: public, max-age=1209600
age: 30539
etag: 10353107486223812946
content-type: text/html; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
p.skimresources.com/px.gif?ch=1&rn=9.136587152262118
35.190.91.160200 OK 43 B URL HTTP/2 p.skimresources.com/px.gif?ch=1&rn=9.136587152262118
IP 35.190.91.160:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash f837aa60b6fe83458f790db60d529fc9
14af87ccec7f81bb28d53c84da2fd5a9d5925cda
dcecab1355b5c2b9ecef281322bf265ac5840b4688748586e9632b473a5fe56b
GET /px.gif?ch=1&rn=9.136587152262118 HTTP/1.1
Host: p.skimresources.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 43
content-type: image/gif
p3p: policyref="http://skimlinks.com/w3c/p3p.xml", CP="NOI DSP COR CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
server: Skimlinks Pixel 1.0
date: Sun, 27 Nov 2022 18:54:41 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
p.skimresources.com/px.gif?ch=2&rn=9.136587152262118
35.190.91.160200 OK 43 B URL HTTP/2 p.skimresources.com/px.gif?ch=2&rn=9.136587152262118
IP 35.190.91.160:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash f837aa60b6fe83458f790db60d529fc9
14af87ccec7f81bb28d53c84da2fd5a9d5925cda
dcecab1355b5c2b9ecef281322bf265ac5840b4688748586e9632b473a5fe56b
GET /px.gif?ch=2&rn=9.136587152262118 HTTP/1.1
Host: p.skimresources.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 43
content-type: image/gif
p3p: policyref="http://skimlinks.com/w3c/p3p.xml", CP="NOI DSP COR CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
server: Skimlinks Pixel 1.0
date: Sun, 27 Nov 2022 18:54:41 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-GDSLZ6B0G9&cid=2111673641.1669575277>m=2oeb90&aip=1&z=1431272064
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-GDSLZ6B0G9&cid=2111673641.1669575277>m=2oeb90&aip=1&z=1431272064
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-GDSLZ6B0G9&cid=2111673641.1669575277>m=2oeb90&aip=1&z=1431272064 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 27 Nov 2022 18:54:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash aade5706a4cfb03695cf520f45423bd5
5cc7d01e92b191f40862de14b4164e7c30e56d82
a6228ac7c5ee54e57a4db19b3c9bd1730bcd9eed3f3da49f3e59fd8b3a5196fd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6537
Cache-Control: max-age=100169
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 18:54:41 GMT
Etag: "63827d31-1d7"
Expires: Mon, 28 Nov 2022 22:44:10 GMT
Last-Modified: Sat, 26 Nov 2022 20:55:13 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
www.clarity.ms/tag/bhpywvk7u5?ref=gtm2
13.107.213.53200 OK 2.2 kB URL HTTP/2 www.clarity.ms/tag/bhpywvk7u5?ref=gtm2
IP 13.107.213.53:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash 9721a93f7027da7ee62810ecb8ccec02
6b4b4c1a180126c6473970af06e069425a3f6a53
d2dc724d34d54fd0b81782552c4ba4bfedf9e7ed8fd012bef209890940fd9bbf
GET /tag/bhpywvk7u5?ref=gtm2 HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store
content-type: application/x-javascript
expires: -1
set-cookie: CLID=fe0e9dc9e639487ab951b016a823c82b.20221127.20231127; expires=Mon, 27 Nov 2023 18:54:41 GMT; path=/; secure; samesite=none; httponly
request-context: appId=cid-v1:bdfb7149-d2ee-45f0-9a22-f0b1c5035608
x-cache: CONFIG_NOCACHE
x-azure-ref: 0cbKDYwAAAABGLuOO8nF9T6X818tJ1bNuQU1TMDRFREdFMTkxOAA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Sun, 27 Nov 2022 18:54:40 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 88e42375d2172305f819b892225cf877
674324641f82700172e72fe259ee2241361e2ea1
6dce3754a67df878b536c368657a492a1f908d408fe7fe5ba43c5d24c44434b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 18:54:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash d3c9b092aee5820bdab6595daad65d61
89e983faeedf25b3e15696f9bf6dbf76feb07868
58d24c4dde4a578c2c0191a19a5a42bdcb5be03b21a1907f60c8deaee78b7331
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 18:54:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-P4DX4S7
142.250.74.168200 OK 567 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-P4DX4S7
IP 142.250.74.168:0
File type ASCII text, with very long lines (4681)
Size 567 kB (567211 bytes)
Hash 0b5b5802e56405e3048aa89f2d9372f1
18ceb5ac0b9c9298c7640a7d88a5fbb13eb18ead
640475a8f0dea438ad5256bd9d938df666cfdcd0618c16316fbf007986b08b3b
GET /gtm.js?id=GTM-P4DX4S7 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 27 Nov 2022 18:54:36 GMT
expires: Sun, 27 Nov 2022 18:54:36 GMT
cache-control: private, max-age=900
last-modified: Sun, 27 Nov 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 87359
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
vars.hotjar.com/box-5e66f98b4ee957db209dc6f63e3d59dd.html
143.204.55.105200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-5e66f98b4ee957db209dc6f63e3d59dd.html
IP 143.204.55.105:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Hash e0652b84b7b3b650769c759fc520c3f8
0b55d6e28613350c7f41b88f19e726e6751ad03b
94b4c240f83065223dcacdd3f8b69cb229d0616edc3e2041eef3e270d859fc3d
GET /box-5e66f98b4ee957db209dc6f63e3d59dd.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kiindred.co/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1035
date: Wed, 23 Nov 2022 13:10:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "e0652b84b7b3b650769c759fc520c3f8"
last-modified: Wed, 23 Nov 2022 13:09:18 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: C7IqQTDV3cKS-POiREzSORDdUpU6QYfdinsUsyLnwNNoiBf1EHGCGg==
age: 366275
X-Firefox-Spdy: h2
script.hotjar.com/modules.e1bdbadbcc63daea6270.js
143.204.55.40200 OK 69 kB URL HTTP/2 script.hotjar.com/modules.e1bdbadbcc63daea6270.js
IP 143.204.55.40:0
File type Unicode text, UTF-8 text, with very long lines (48714)
Hash 53db6c810ee48127f87a9c79e206fc67
aa53e521ba10b23524afc519c6e6ba8d1eb5147c
f89c4d3c17828a5c54ecc60f5107e2bfe92cb8b4622fb766fda6d1fca1c95fdd
GET /modules.e1bdbadbcc63daea6270.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 68720
date: Thu, 24 Nov 2022 08:09:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "53db6c810ee48127f87a9c79e206fc67"
last-modified: Thu, 24 Nov 2022 08:08:08 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: mzmlMgBu7vQ3r3RAVsyFnNzBtloze1kt0JJbFPBfbJB526oZULvznQ==
age: 297935
X-Firefox-Spdy: h2
s.adroll.com/j/pre/BNCP2FEDFNCZ5OPA3SLMKO/OJWLIR2VJ5AANO6S454XFI/fpconsent.js
143.204.55.84302 Moved Temporarily 0 B URL HTTP/1.1 s.adroll.com/j/pre/BNCP2FEDFNCZ5OPA3SLMKO/OJWLIR2VJ5AANO6S454XFI/fpconsent.js
IP 143.204.55.84:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /j/pre/BNCP2FEDFNCZ5OPA3SLMKO/OJWLIR2VJ5AANO6S454XFI/fpconsent.js HTTP/1.1
Host: s.adroll.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Content-Type: application/xml
Content-Length: 0
Connection: keep-alive
Date: Sun, 27 Nov 2022 14:45:23 GMT
Server: AmazonS3
Location: https://s.adroll.com/j/pre/index.js
Via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
Age: 14958
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: DHTmJ5RN-VwHeDKXQTuDiQslErNvL45BJDx2-zxdINqhlZbjKg2JyA==
s.adroll.com/j/pre/index.js
143.204.55.84200 OK 0 B URL HTTP/1.1 s.adroll.com/j/pre/index.js
IP 143.204.55.84:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /j/pre/index.js HTTP/1.1
Host: s.adroll.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://kiindred.co/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Last-Modified: Wed, 15 Jan 2020 23:54:18 GMT
X-Amz-Server-Side-Encryption: AES256
X-Amz-Version-Id: nQEe8wQ7h0ROt7P4GJfDfstto6x684Hy
Accept-Ranges: bytes
Server: AmazonS3
Date: Sun, 27 Nov 2022 03:14:14 GMT
Etag: "d41d8cd98f00b204e9800998ecf8427e"
Vary: Accept-Encoding
Via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
Age: 57112
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: MKm_bbU6oRdDwxNH8XCJclJCMeZZo2UZyBluZa-4eCrAzlJjP8W_KA==
s.pinimg.com/ct/lib/main.9a94ee76.js
23.38.200.197200 OK 21 kB URL HTTP/2 s.pinimg.com/ct/lib/main.9a94ee76.js
IP 23.38.200.197:0
File type Unicode text, UTF-8 text, with very long lines (59858), with no line terminators
Hash e43867aadc515024dd460d8611098a12
c4fd1b2ace2f8a96a38e4b4996be8d7c46fdfd3f
76d528cb411bf6ff7fd77619aa507bec3bdf7f02063add1d9fe9009088f78d98
GET /ct/lib/main.9a94ee76.js HTTP/1.1
Host: s.pinimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "e43867aadc515024dd460d8611098a12"
content-encoding: gzip
accept-ranges: bytes
content-type: application/javascript
content-length: 20728
cache-control: max-age=1209600
vary: Accept-Encoding, Origin
x-cdn: akamai
access-control-max-age: 86400
access-control-expose-headers: X-CDN
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
s.adroll.com/j/exp/index.js
143.204.55.84200 OK 28 B URL HTTP/1.1 s.adroll.com/j/exp/index.js
IP 143.204.55.84:0
File type ASCII text, with no line terminators
Hash 5816cced8568d223aa09d889f300692b
95cab5e474d7391762c3da5c7dc50fcf05df529f
f59e5f34a941183aacaed25322ac0856628493c2cfd936ded3fddc0a49510e52
GET /j/exp/index.js HTTP/1.1
Host: s.adroll.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://kiindred.co/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 28
Connection: keep-alive
Last-Modified: Fri, 14 Oct 2022 18:57:24 GMT
X-Amz-Server-Side-Encryption: AES256
X-Amz-Version-Id: 3TnMO1iw0qw17MhnYw4sprJhuU7ahGp7
Accept-Ranges: bytes
Server: AmazonS3
Date: Sat, 26 Nov 2022 20:55:05 GMT
Etag: "5816cced8568d223aa09d889f300692b"
Vary: Accept-Encoding
Via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
Age: 79211
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: y0k9LGA0j5TjuxEdHE0xiSoTM3VTgpxuUvnvImevX8MPKCVN4T0InA==
s.adroll.com/j/pre/BNCP2FEDFNCZ5OPA3SLMKO/OJWLIR2VJ5AANO6S454XFI/index.js
143.204.55.84200 OK 0 B URL HTTP/1.1 s.adroll.com/j/pre/BNCP2FEDFNCZ5OPA3SLMKO/OJWLIR2VJ5AANO6S454XFI/index.js
IP 143.204.55.84:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /j/pre/BNCP2FEDFNCZ5OPA3SLMKO/OJWLIR2VJ5AANO6S454XFI/index.js HTTP/1.1
Host: s.adroll.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
Content-Length: 0
Connection: keep-alive
Last-Modified: Thu, 24 Nov 2022 04:31:52 GMT
X-Amz-Server-Side-Encryption: AES256
X-Amz-Version-Id: FiMdpkNC9dEoGmoFlaru6giBNYlMbZLi
Accept-Ranges: bytes
Server: AmazonS3
Date: Sun, 27 Nov 2022 18:54:41 GMT
Cache-Control: max-age=3600, must-revalidate
Etag: "d41d8cd98f00b204e9800998ecf8427e"
Vary: Accept-Encoding
Via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
Age: 968
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 6AgnviZm0MknQxq1A_dAIIa5_9w053sbU4udPzdmoiTXw-5Fhwc1AQ==
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 9f6cc8d3fe9092a6d3901e873a87fd87
2e0aac117a4cc57596efb3d6f6624c269f94b031
e73982e62b92abac3d15b161f4525448cc2bc8b9bacefdcbfc6f87b74ec372e4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 18:54:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
kiindred.co/
104.21.91.170200 OK 102 kB IP 104.21.91.170:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (9381), with CRLF, LF line terminators
Size 102 kB (101751 bytes)
Hash 3410d184fe724558d87509c16663a622
2b1a8cbfff3ce9308077bf8f5df4505fa2b9cc56
c2e3badd9d498cc6a3631ccda35e868a85179fda9e693ab3b2fcb183ad1e5792
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: kiindred.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Sun, 27 Nov 2022 18:54:36 GMT
content-type: text/html; charset=UTF-8
link: <https://kiindred.co/wp-json/>; rel="https://api.w.org/", <https://kiindred.co/wp-json/wp/v2/pages/2>; rel="alternate"; type="application/json", <https://kiindred.co/>; rel=shortlink
vary: Accept-Encoding
cf-cache-status: DYNAMIC
ki-cache-type: None
ki-cf-cache-status: BYPASS
ki-edge: v=17.9
ki-edge-o2o: yes
x-content-security-policy: default-src 'self'; script-src 'self';
x-content-type-options: nosniff
x-edge-location-klb: 1
x-kinsta-cache: HIT
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Dtx2W0R4qIxvYhI6f5voJeRL2vZYHgxYCgtqlVvAMYbC6kVyOlHiUS6GxD%2BBApcqKm7bwVqbPV6qntwqlitjWUMSiMxo2AMLVFtF%2BZxW%2BgJVSshDGBRGe4Arw7Us"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 770d12beafdfb51e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 9f6cc8d3fe9092a6d3901e873a87fd87
2e0aac117a4cc57596efb3d6f6624c269f94b031
e73982e62b92abac3d15b161f4525448cc2bc8b9bacefdcbfc6f87b74ec372e4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 18:54:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
rules.quantcount.com/rules-p-Jw8MNsBzXU-Ta.js
54.230.111.33200 OK 160 B URL HTTP/2 rules.quantcount.com/rules-p-Jw8MNsBzXU-Ta.js
IP 54.230.111.33:0
Hash 85ce20aea9176991e341035bcdaebfcd
f619805101259364104d6c1c8e99bb007c488c3a
82de7bcbf8fe0784afdcb1023100f4b60d0c65ba128d1b803f0a9a28548d238a
GET /rules-p-Jw8MNsBzXU-Ta.js HTTP/1.1
Host: rules.quantcount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 160
last-modified: Fri, 14 Oct 2022 00:45:02 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
access-control-allow-methods: GET
date: Sun, 27 Nov 2022 18:38:34 GMT
cache-control: max-age=3600
etag: "85ce20aea9176991e341035bcdaebfcd"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: c6vb5Biw7MyTrB6FPWHXX0DCFweIP1T8ED1pUMjkV1HKFflfJw94UA==
age: 968
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/812736345/?random=1669575276368&cv=11&fst=1669572000000&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fkiindred.co%2F&tiba=Supporting%20the%20modern%20Parent%20through%20Fertility%2C%20Pregnancy%20and%20Parenthood&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1808895197&rmt_tld=0&ipr=y
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/812736345/?random=1669575276368&cv=11&fst=1669572000000&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fkiindred.co%2F&tiba=Supporting%20the%20modern%20Parent%20through%20Fertility%2C%20Pregnancy%20and%20Parenthood&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1808895197&rmt_tld=0&ipr=y
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/812736345/?random=1669575276368&cv=11&fst=1669572000000&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fkiindred.co%2F&tiba=Supporting%20the%20modern%20Parent%20through%20Fertility%2C%20Pregnancy%20and%20Parenthood&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1808895197&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 27 Nov 2022 18:54:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/812736345/?random=1669575276377&cv=11&fst=1669572000000&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fkiindred.co%2F&tiba=Supporting%20the%20modern%20Parent%20through%20Fertility%2C%20Pregnancy%20and%20Parenthood&data=event%3Dpage_view&fmt=3&is_vtc=1&random=783665446&rmt_tld=0&ipr=y
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/812736345/?random=1669575276377&cv=11&fst=1669572000000&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fkiindred.co%2F&tiba=Supporting%20the%20modern%20Parent%20through%20Fertility%2C%20Pregnancy%20and%20Parenthood&data=event%3Dpage_view&fmt=3&is_vtc=1&random=783665446&rmt_tld=0&ipr=y
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/812736345/?random=1669575276377&cv=11&fst=1669572000000&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fkiindred.co%2F&tiba=Supporting%20the%20modern%20Parent%20through%20Fertility%2C%20Pregnancy%20and%20Parenthood&data=event%3Dpage_view&fmt=3&is_vtc=1&random=783665446&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 27 Nov 2022 18:54:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/812736345/?random=1669575276390&cv=11&fst=1669572000000&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fkiindred.co%2F&tiba=Supporting%20the%20modern%20Parent%20through%20Fertility%2C%20Pregnancy%20and%20Parenthood&fmt=3&is_vtc=1&random=2095719881&rmt_tld=0&ipr=y
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/812736345/?random=1669575276390&cv=11&fst=1669572000000&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fkiindred.co%2F&tiba=Supporting%20the%20modern%20Parent%20through%20Fertility%2C%20Pregnancy%20and%20Parenthood&fmt=3&is_vtc=1&random=2095719881&rmt_tld=0&ipr=y
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/812736345/?random=1669575276390&cv=11&fst=1669572000000&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fkiindred.co%2F&tiba=Supporting%20the%20modern%20Parent%20through%20Fertility%2C%20Pregnancy%20and%20Parenthood&fmt=3&is_vtc=1&random=2095719881&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 27 Nov 2022 18:54:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
t.skimresources.com/api/v2/page
35.201.67.47200 OK 22 B URL HTTP/2 t.skimresources.com/api/v2/page
IP 35.201.67.47:0
File type ASCII text, with no line terminators
Hash 0af18ddd75419d12bc31a9cdcd445d2f
76efe421633b1b494f9f374a5f3a758436eee0a9
fcc83a5b6aef86420c1ad553167106df96bd0ff4192ffe52b1647599948edbcf
POST /api/v2/page HTTP/1.1
Host: t.skimresources.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: text/plain
Content-Length: 254
Origin: https://kiindred.co
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain; charset=utf-8
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
x-content-type-options: nosniff
access-control-allow-origin: https://kiindred.co
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, X-CSRF-Token
access-control-allow-credentials: true
content-length: 22
date: Sun, 27 Nov 2022 18:54:41 GMT
server: Python/3.10 aiohttp/3.8.3
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
pixel.quantserve.com/pixel;r=10061400;source=gtm;rf=0;a=p-Jw8MNsBzXU-Ta;url=https%3A%2F%2Fkiindred.co%2F;uht=2;fpan=1;fpa=P0-1759759392-1669575280965;pbc=;ns=0;ce=1;qjs=1;qv=48c6ea86-20221121114006;cm=;gdpr=0;ref=;d=kiindred.co;dst=0;et=1669575281340;tzo=0;ogl=locale.en_US%2Ctype.website%2Ctitle.Supporting%20the%20modern%20Parent%20through%20Fertility%252C%20Pregnancy%20and%20Parenthood%2Cdescription.An%20education%20and%20lifestyle%20destination%20for%20the%20modern%20parent%252C%20supporting%20you%20thr%2Curl.https%3A%2F%2Fkiindred%252Eco%2F%2Csite_name.Kiindred%2Cimage.https%3A%2F%2Fkiindred%252Eco%2Fwp-content%2Fuploads%2F2022%2F10%2Fmain-banner-web-n%252Epng;ses=6cf7aad6-d3c1-4e06-8158-19e202c0b195
91.228.74.168200 OK 35 B URL HTTP/2 pixel.quantserve.com/pixel;r=10061400;source=gtm;rf=0;a=p-Jw8MNsBzXU-Ta;url=https%3A%2F%2Fkiindred.co%2F;uht=2;fpan=1;fpa=P0-1759759392-1669575280965;pbc=;ns=0;ce=1;qjs=1;qv=48c6ea86-20221121114006;cm=;gdpr=0;ref=;d=kiindred.co;dst=0;et=1669575281340;tzo=0;ogl=locale.en_US%2Ctype.website%2Ctitle.Supporting%20the%20modern%20Parent%20through%20Fertility%252C%20Pregnancy%20and%20Parenthood%2Cdescription.An%20education%20and%20lifestyle%20destination%20for%20the%20modern%20parent%252C%20supporting%20you%20thr%2Curl.https%3A%2F%2Fkiindred%252Eco%2F%2Csite_name.Kiindred%2Cimage.https%3A%2F%2Fkiindred%252Eco%2Fwp-content%2Fuploads%2F2022%2F10%2Fmain-banner-web-n%252Epng;ses=6cf7aad6-d3c1-4e06-8158-19e202c0b195
IP 91.228.74.168:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 55d25e9dc950d5db4d53a3b195c046c6
75e91ae3e549dab12ed1c9787ade9131aef1c981
a0d3a0aff7dc3bf32d2176fc3dcda6e7aba2867c4f4d1f7af6355d2cfc6c44f8
GET /pixel;r=10061400;source=gtm;rf=0;a=p-Jw8MNsBzXU-Ta;url=https%3A%2F%2Fkiindred.co%2F;uht=2;fpan=1;fpa=P0-1759759392-1669575280965;pbc=;ns=0;ce=1;qjs=1;qv=48c6ea86-20221121114006;cm=;gdpr=0;ref=;d=kiindred.co;dst=0;et=1669575281340;tzo=0;ogl=locale.en_US%2Ctype.website%2Ctitle.Supporting%20the%20modern%20Parent%20through%20Fertility%252C%20Pregnancy%20and%20Parenthood%2Cdescription.An%20education%20and%20lifestyle%20destination%20for%20the%20modern%20parent%252C%20supporting%20you%20thr%2Curl.https%3A%2F%2Fkiindred%252Eco%2F%2Csite_name.Kiindred%2Cimage.https%3A%2F%2Fkiindred%252Eco%2Fwp-content%2Fuploads%2F2022%2F10%2Fmain-banner-web-n%252Epng;ses=6cf7aad6-d3c1-4e06-8158-19e202c0b195 HTTP/1.1
Host: pixel.quantserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 18:54:41 GMT
content-type: image/gif
content-length: 35
cache-control: private, no-cache, no-store, proxy-revalidate
expires: Fri, 04 Aug 1978 12:00:00 GMT
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAo PSDo OUR SAMa IND COM NAV"
pragma: no-cache
set-cookie: mc=6383b271-b977c-08f78-27a59; expires=Thu, 28-Dec-2023 18:54:41 GMT; path=/; domain=.quantserve.com
X-Firefox-Spdy: h2
ocsp.r2m01.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash d2ef1056347dc967bc52864ee880bc28
fe8778ab2ffec613cb9218b597e381573952bcae
c923a177c91b43fad1225b08b10df9ff39d2c760997f364e35fea116b8041df9
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 27 Nov 2022 18:54:41 GMT
Last-Modified: Sun, 27 Nov 2022 18:20:15 GMT
Server: ECS (nyb/1D06)
X-Cache: Miss from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: MiI6T43lYhqqWMa3cftURHvLixI79NvWiHpvSvKYP-QZBa48lEmuaA==
Age: 2066
ct.pinterest.com/user/?tid=2613615128347&pd=%7B%22np%22%3A%22gtm%22%7D&cb=1669575281431&dep=2%2CPAGE_LOAD
23.38.200.197200 OK 373 B URL HTTP/2 ct.pinterest.com/user/?tid=2613615128347&pd=%7B%22np%22%3A%22gtm%22%7D&cb=1669575281431&dep=2%2CPAGE_LOAD
IP 23.38.200.197:0
File type JSON data\012- , ASCII text, with very long lines (533), with no line terminators
Hash 7c95bf1e7580e7dfa7f4f5c10b0addd9
a1e3954cd6a0d4a5fc0a6c344d91e6c24504722b
1f8cb83a1e4eedc470a6d0c6acc5f5ff13fa65639378a8a14d5db82e288b2e17
GET /user/?tid=2613615128347&pd=%7B%22np%22%3A%22gtm%22%7D&cb=1669575281431&dep=2%2CPAGE_LOAD HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://kiindred.co
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-expose-headers: Epik,Pin-Unauth
pin-unauth: dWlkPU5EQmhNR015WldZdFltRmtNUzAwWmpFeUxXRTVOalF0TlRCbE5EQTJZbVl5TXprMA
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
access-control-allow-origin: https://kiindred.co
content-type: application/json; charset=utf-8
content-encoding: gzip
content-length: 373
x-envoy-upstream-service-time: 2
referrer-policy: origin
x-pinterest-rid: 1175845051882088
date: Sun, 27 Nov 2022 18:54:41 GMT
vary: Accept-Encoding
akamai-grn: 0.274f2417.1669575281.33c7318e
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
ct.pinterest.com/v3/?tid=2613615128347&pd=%7B%22np%22%3A%22gtm%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fkiindred.co%2F%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%229a94ee76%22%2C%22ecm_enabled%22%3Afalse%7D&cb=1669575281432
23.38.200.197200 OK 35 B URL HTTP/2 ct.pinterest.com/v3/?tid=2613615128347&pd=%7B%22np%22%3A%22gtm%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fkiindred.co%2F%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%229a94ee76%22%2C%22ecm_enabled%22%3Afalse%7D&cb=1669575281432
IP 23.38.200.197:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9b8d19f4310c758344e40bf17fbc7e85
2290ef058812d5f5e398736e2316cba8cf8093cf
37b17c5135a176a9474521af147d96dfa1fb4ca0f43f00d1400bd1885be3ab9b
GET /v3/?tid=2613615128347&pd=%7B%22np%22%3A%22gtm%22%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fkiindred.co%2F%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%229a94ee76%22%2C%22ecm_enabled%22%3Afalse%7D&cb=1669575281432 HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-type: image/gif
content-length: 35
access-control-allow-origin: *
x-envoy-upstream-service-time: 2
referrer-policy: origin
x-pinterest-rid: 1980582905401273
date: Sun, 27 Nov 2022 18:54:41 GMT
akamai-grn: 0.274f2417.1669575281.33c7319f
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
d.adroll.com/consent/check/BNCP2FEDFNCZ5OPA3SLMKO?pv=97109727633.6439&arrfrr=https%3A%2F%2Fkiindred.co%2F&_s=122eba129cf2e0e25870e89762c7ce71&_b=2
34.241.204.171200 OK 462 B URL HTTP/2 d.adroll.com/consent/check/BNCP2FEDFNCZ5OPA3SLMKO?pv=97109727633.6439&arrfrr=https%3A%2F%2Fkiindred.co%2F&_s=122eba129cf2e0e25870e89762c7ce71&_b=2
IP 34.241.204.171:0
File type ASCII text, with very long lines (462), with no line terminators
Hash 337124cd0f4ee4c8f0c9d8ce1ab929bd
0cde56515853bef780f406baebb97a9122457778
3d97eea3ee72eb567aea25f35c4eb26f0243b0051a25f4de4f94af5bb614d080
GET /consent/check/BNCP2FEDFNCZ5OPA3SLMKO?pv=97109727633.6439&arrfrr=https%3A%2F%2Fkiindred.co%2F&_s=122eba129cf2e0e25870e89762c7ce71&_b=2 HTTP/1.1
Host: d.adroll.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 18:54:41 GMT
content-type: application/javascript
content-length: 462
server: nginx/1.22.0
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 15619e238e943befcd5fa4737f76c851
7198f9cb4672d54e5d6812730b875b6172e64b53
7ecac89dd434501d9e15d8c728d1ec497ac7b4962285396c7fbfcc7987700ca0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 18:54:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.youtube.com/iframe_api
216.58.211.14200 OK 623 B URL HTTP/2 www.youtube.com/iframe_api
IP 216.58.211.14:0
File type ASCII text, with very long lines (509)
Hash e6492853dfeb7229858edb34eea8ff8c
44ef7997660cf5b9cee729f4505f8b01605a05cd
cacce7abf2682fd7e3effbfe7166103a3396b5d2d82b386f7c969218dc1db757
GET /iframe_api HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
x-content-type-options: nosniff
expires: Sun, 27 Nov 2022 18:54:41 GMT
date: Sun, 27 Nov 2022 18:54:41 GMT
cache-control: private, max-age=0
strict-transport-security: max-age=31536000
x-frame-options: SAMEORIGIN
cross-origin-resource-policy: cross-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=s5ySOaQDGDQ; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=5hfzt6519z0; Domain=.youtube.com; Expires=Fri, 26-May-2023 18:54:41 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+457; expires=Tue, 26-Nov-2024 18:54:41 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
partner.googleadservices.com/gampad/cookie.js?domain=kiindred.co&callback=_gfp_s_&client=ca-pub-6825110399734618&gpid_exp=1
172.217.21.162200 OK 252 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=kiindred.co&callback=_gfp_s_&client=ca-pub-6825110399734618&gpid_exp=1
IP 172.217.21.162:0
File type ASCII text, with very long lines (389), with no line terminators
Hash ae35883702acde3695a7154f312ef329
0f4e7c7c7cab70fb77d6c9a77dcaf84b3ecc57e4
bcef81d68f0c86e80c69f3af64289affd7f79e12f7662c74243532ac648ebd1a
GET /gampad/cookie.js?domain=kiindred.co&callback=_gfp_s_&client=ca-pub-6825110399734618&gpid_exp=1 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sun, 27 Nov 2022 18:54:41 GMT
server: cafe
cache-control: private
content-length: 252
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=kiindred.co
142.250.74.2200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=kiindred.co
IP 142.250.74.2:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=kiindred.co HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sun, 27 Nov 2022 18:54:41 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=284203605446505&ev=PageView&dl=https%3A%2F%2Fkiindred.co%2F&rl=&if=false&ts=1669575281500&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1669575281499.457376637&it=1669575280899&coo=false&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=284203605446505&ev=PageView&dl=https%3A%2F%2Fkiindred.co%2F&rl=&if=false&ts=1669575281500&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1669575281499.457376637&it=1669575280899&coo=false&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=284203605446505&ev=PageView&dl=https%3A%2F%2Fkiindred.co%2F&rl=&if=false&ts=1669575281500&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1669575281499.457376637&it=1669575280899&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sun, 27 Nov 2022 18:54:41 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 15619e238e943befcd5fa4737f76c851
7198f9cb4672d54e5d6812730b875b6172e64b53
7ecac89dd434501d9e15d8c728d1ec497ac7b4962285396c7fbfcc7987700ca0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 18:54:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=kiindred.co
142.250.74.2200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=kiindred.co
IP 142.250.74.2:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=kiindred.co HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sun, 27 Nov 2022 18:54:42 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ct.pinterest.com/ct.html
23.38.200.197200 OK 323 B IP 23.38.200.197:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (565), with no line terminators
Hash b49b45b63051915a8c657060651eb07f
acaddf8021f220d0e4d30e7c8b3d8330ff781af9
4b00fbca5db49c6e4b29a0c873c43671880bcea1b7b3007655183382a318c2dc
GET /ct.html HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kiindred.co/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=86400
content-type: text/html; charset=utf-8
content-encoding: gzip
content-length: 323
x-envoy-upstream-service-time: 0
referrer-policy: origin
x-pinterest-rid: 5157103513912413
date: Sun, 27 Nov 2022 18:54:42 GMT
vary: Accept-Encoding
akamai-grn: 0.274f2417.1669575282.33c73951
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 089955bb623e5b17b8cea050fca2ae7f
648a28d3e625c8810cfc1d8ed2d7f0be532c7205
74c93173ae5af1cbabb1e12ba2b87fae7b0c41c50012a0994e03862b4dff4086
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=163540
Date: Sun, 27 Nov 2022 18:54:42 GMT
Etag: "6383815e-1d7"
Expires: Tue, 29 Nov 2022 16:20:22 GMT
Last-Modified: Sun, 27 Nov 2022 15:25:18 GMT
Server: ECS (nyb/1D14)
X-Cache: Miss from cloudfront
Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: B5bLNCEdN6P-8dVxyvLZf_b03VGvIHrI4W3dzrvwcETGH7w1aATC8A==
Age: 3304
c.clarity.ms/c.gif
20.234.93.27302 Found 0 B IP 20.234.93.27:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.bing.com/c.gif?CtsSyncId=4A756085B4CF4F37B5E8EA48D47C3C9E&RedC=c.clarity.ms&MXFR=085C7286BE08626A2DC260EFBA086C54
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SM=T; domain=c.clarity.ms; path=/; SameSite=None; Secure;
MUID=085C7286BE08626A2DC260EFBA086C54; domain=.clarity.ms; expires=Fri, 22-Dec-2023 18:54:42 GMT; path=/; SameSite=None; Secure; Priority=High;
date: Sun, 27 Nov 2022 18:54:41 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0c7f923b97046608033f90253a891bf0
bf5025e94ed9ea85ee3e7677561ee686480b526c
1062154cd5de28de1d012a4f4d10fb5e548fabf6d67918eaeb745975949a3294
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 18:54:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
3e2bab284ed32c65ddf4546344fb69fb.safeframe.googlesyndication.com/safeframe/1-0-40/html/container.html
142.250.74.65200 OK 2.7 kB URL HTTP/2 3e2bab284ed32c65ddf4546344fb69fb.safeframe.googlesyndication.com/safeframe/1-0-40/html/container.html
IP 142.250.74.65:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5657)
Hash e8ee9c011ff8e1f464e74c37113119ee
64ad72134ea05877de0f2b6503f5c0d8c3f78197
09e42988871806c7f0a897bda7bc4247f47f4d8590749eaa245b8ff1fa907303
GET /safeframe/1-0-40/html/container.html HTTP/1.1
Host: 3e2bab284ed32c65ddf4546344fb69fb.safeframe.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kiindred.co/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/html
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 2653
date: Sun, 27 Nov 2022 18:54:42 GMT
expires: Mon, 27 Nov 2023 18:54:42 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Thu, 03 Nov 2022 19:10:08 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
in.hotjar.com/api/v2/client/sites/2831502/visit-data?sv=7
99.80.127.52200 OK 9.6 kB URL HTTP/2 in.hotjar.com/api/v2/client/sites/2831502/visit-data?sv=7
IP 99.80.127.52:0
File type JSON data\012- , ASCII text, with no line terminators
Hash d9197671871344e5ddec08cfb5e7c2c8
d4b9c25b78af83d855ea72da82af52a542554deb
2ade39fb4a571e94cdadade5bf2409c4c8ee9d30a9eaf89d7db5e09f86977343
POST /api/v2/client/sites/2831502/visit-data?sv=7 HTTP/1.1
Host: in.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=UTF-8
Content-Length: 112
Origin: https://kiindred.co
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 18:54:42 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2
c.bing.com/c.gif?CtsSyncId=4A756085B4CF4F37B5E8EA48D47C3C9E&RedC=c.clarity.ms&MXFR=085C7286BE08626A2DC260EFBA086C54
204.79.197.200302 Found 0 B URL HTTP/2 c.bing.com/c.gif?CtsSyncId=4A756085B4CF4F37B5E8EA48D47C3C9E&RedC=c.clarity.ms&MXFR=085C7286BE08626A2DC260EFBA086C54
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif?CtsSyncId=4A756085B4CF4F37B5E8EA48D47C3C9E&RedC=c.clarity.ms&MXFR=085C7286BE08626A2DC260EFBA086C54 HTTP/1.1
Host: c.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://kiindred.co/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.clarity.ms/c.gif?CtsSyncId=4A756085B4CF4F37B5E8EA48D47C3C9E&MUID=197FB85A92176073390FAA33934061F9
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SRM_B=197FB85A92176073390FAA33934061F9; domain=c.bing.com; expires=Fri, 22-Dec-2023 18:54:42 GMT; path=/; SameSite=None; Secure;
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 7FF1DC7284204715B64ADDA16BC1E63E Ref B: OSL30EDGE0308 Ref C: 2022-11-27T18:54:42Z
date: Sun, 27 Nov 2022 18:54:42 GMT
content-length: 0
X-Firefox-Spdy: h2
b.clarity.ms/collect
20.75.32.255204 No Content 0 B IP 20.75.32.255:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: b.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 774
Origin: https://kiindred.co
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
access-control-allow-origin: https://kiindred.co
access-control-allow-credentials: true
date: Sun, 27 Nov 2022 18:54:41 GMT
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2.js
142.250.74.33200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Sun, 27 Nov 2022 18:54:42 GMT
expires: Sun, 27 Nov 2022 18:54:42 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
c.clarity.ms/c.gif?CtsSyncId=4A756085B4CF4F37B5E8EA48D47C3C9E&MUID=197FB85A92176073390FAA33934061F9
20.234.93.27200 OK 42 B URL HTTP/2 c.clarity.ms/c.gif?CtsSyncId=4A756085B4CF4F37B5E8EA48D47C3C9E&MUID=197FB85A92176073390FAA33934061F9
IP 20.234.93.27:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 1 x 1\012- data
Hash 32023bb33cfb2a1990a4ef2d85b6ac16
23dcc6d4b5bfe00357fd0248bb5955b8e36bb8f1
99c2917ee5b2a01459a923bdd1c676f15ee73b62b87f696e6735312d26f51e12
GET /c.gif?CtsSyncId=4A756085B4CF4F37B5E8EA48D47C3C9E&MUID=197FB85A92176073390FAA33934061F9 HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://kiindred.co/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
content-type: image/gif
last-modified: Thu, 13 Oct 2022 20:07:05 GMT
accept-ranges: bytes
etag: "40db785d3fdfd81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: ANONCHK=0; domain=c.clarity.ms; expires=Sun, 27-Nov-2022 19:04:42 GMT; path=/; SameSite=None; Secure;
date: Sun, 27 Nov 2022 18:54:41 GMT
content-length: 42
X-Firefox-Spdy: h2
www.googletagservices.com/dcm/dcmads.js
142.250.74.162200 OK 11 kB URL HTTP/2 www.googletagservices.com/dcm/dcmads.js
IP 142.250.74.162:0
File type ASCII text, with very long lines (1730)
Hash 8ee26fc3c34c03930ea316ff21cf77c1
9f8bb4b21e7f7c68dfb5fea8defc40ebf6751c59
1024c5f75b6a081fb08b0b607c0551d897636ba95689bed6ede7cc706904ed2a
GET /dcm/dcmads.js HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3e2bab284ed32c65ddf4546344fb69fb.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-dcm-tag
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-dcm-tag"
report-to: {"group":"ads-dcm-tag","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-dcm-tag"}]}
content-length: 10900
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 27 Nov 2022 18:32:11 GMT
expires: Sun, 27 Nov 2022 19:32:11 GMT
cache-control: public, max-age=3600
age: 1351
last-modified: Wed, 09 Nov 2022 17:19:43 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
142.250.74.162200 OK 48 kB URL HTTP/2 www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
IP 142.250.74.162:0
File type ASCII text, with very long lines (3502)
Hash 297e24828abaf97fb29460fd75369140
e9e02d737f1bcf9874a55562edff5f795a1c170c
cdbe4e689ca060e94f00f0aa4c45a89efacddac90df42929ff42a3bff44a9d3e
GET /activeview/js/current/rx_lidar.js?cache=r20110914 HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3e2bab284ed32c65ddf4546344fb69fb.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/active-view-scs-read-write-acl
cross-origin-opener-policy: same-origin; report-to="active-view-scs-read-write-acl"
report-to: {"group":"active-view-scs-read-write-acl","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/active-view-scs-read-write-acl"}]}
content-length: 48265
date: Sun, 27 Nov 2022 18:54:42 GMT
expires: Sun, 27 Nov 2022 18:54:42 GMT
cache-control: private, max-age=3000
etag: "1668095300071091"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 9cff2c2ad4207e09e07c017987177850
833082ded91a1983a1367c48c8076949e079ce95
82b03e92d004f116875ba023a7e8782d3c124a1c499a6328f29cff70f397a6cc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 18:54:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 9cff2c2ad4207e09e07c017987177850
833082ded91a1983a1367c48c8076949e079ce95
82b03e92d004f116875ba023a7e8782d3c124a1c499a6328f29cff70f397a6cc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 18:54:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ad.doubleclick.net/ddm/adi/N472810.3495842KIINDRED/B28926383.351899694;dc_ver=92.271;dc_eid=40004000;sz=728x90;u_sd=1;dc_adk=4266219863;ord=g65v9t;click=https%3A%2F%2Fadclick.g.doubleclick.net%2Fpcs%2Fclick%3Fxai%3DAKAOjsu293ps2orDO_n1_vC75kKIcUB43Z6FSp7lEFm-mNw27wYQ46jb7lN2zehBn1qWDa8UD4397HTlPpE9WYKmjNrE_hkqdbOgyM1Pv_4jmkbgPtVS3lgNhDXE7FIIaJX4CWQiAzFP98D0QyojiAXwuPmDYNCKu6dsEuNOW_Buw0tLZLMdgNdK8phMFmVhWAMptH0zBOR27N1WzwJUjGaTf_W5wHg_ov-WHElIcWlbdEGRlKbh6zQfiG6EhGb5Omw8EoA0nOG6EfgkqvQxId0UMd5wnMD6ya_x34XCOrFLmvCFRULBHSngSZnjehUiXEJGhFlBIJ7CvkYMD4I%26sai%3DAMfl-YQaWI5-Fyn8tG526TbfQL5HJ2v6lH61AcW6n36zkq2yhR9zSH--Dd8w_YPRWsMQGypm20qjMRXb-03EOs6M324SrHf2g9_qAKJNB8RXUY3tDc-dEkwh7GcDCeHYc1aAt6Q4X8snWcRwsWV6CaTrZA%26sig%3DCg0ArKJSzF-U6SAChNhPEAE%26fbs_aeid%3D%5Bgw_fbsaeid%5D%26urlfix%3D1%26adurl%3D;dc_rfl=1,https%3A%2F%2Fkiindred.co%2F$0;xdt=1;crlt=G_fa83Ugy_;stc=1;sttr=97;prcl=s
142.250.74.102200 OK 27 kB URL HTTP/2 ad.doubleclick.net/ddm/adi/N472810.3495842KIINDRED/B28926383.351899694;dc_ver=92.271;dc_eid=40004000;sz=728x90;u_sd=1;dc_adk=4266219863;ord=g65v9t;click=https%3A%2F%2Fadclick.g.doubleclick.net%2Fpcs%2Fclick%3Fxai%3DAKAOjsu293ps2orDO_n1_vC75kKIcUB43Z6FSp7lEFm-mNw27wYQ46jb7lN2zehBn1qWDa8UD4397HTlPpE9WYKmjNrE_hkqdbOgyM1Pv_4jmkbgPtVS3lgNhDXE7FIIaJX4CWQiAzFP98D0QyojiAXwuPmDYNCKu6dsEuNOW_Buw0tLZLMdgNdK8phMFmVhWAMptH0zBOR27N1WzwJUjGaTf_W5wHg_ov-WHElIcWlbdEGRlKbh6zQfiG6EhGb5Omw8EoA0nOG6EfgkqvQxId0UMd5wnMD6ya_x34XCOrFLmvCFRULBHSngSZnjehUiXEJGhFlBIJ7CvkYMD4I%26sai%3DAMfl-YQaWI5-Fyn8tG526TbfQL5HJ2v6lH61AcW6n36zkq2yhR9zSH--Dd8w_YPRWsMQGypm20qjMRXb-03EOs6M324SrHf2g9_qAKJNB8RXUY3tDc-dEkwh7GcDCeHYc1aAt6Q4X8snWcRwsWV6CaTrZA%26sig%3DCg0ArKJSzF-U6SAChNhPEAE%26fbs_aeid%3D%5Bgw_fbsaeid%5D%26urlfix%3D1%26adurl%3D;dc_rfl=1,https%3A%2F%2Fkiindred.co%2F$0;xdt=1;crlt=G_fa83Ugy_;stc=1;sttr=97;prcl=s
IP 142.250.74.102:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (57325), with no line terminators
Hash 71bc26142f28498ded620af87cec1523
ee31d20e26fd1104a786d092bf6fb4841f1b4e61
4c6dbdc7f4b64e57ca2791c611351b51ca169cbe28dbd31e51cc52c0e9adc55e
GET /ddm/adi/N472810.3495842KIINDRED/B28926383.351899694;dc_ver=92.271;dc_eid=40004000;sz=728x90;u_sd=1;dc_adk=4266219863;ord=g65v9t;click=https%3A%2F%2Fadclick.g.doubleclick.net%2Fpcs%2Fclick%3Fxai%3DAKAOjsu293ps2orDO_n1_vC75kKIcUB43Z6FSp7lEFm-mNw27wYQ46jb7lN2zehBn1qWDa8UD4397HTlPpE9WYKmjNrE_hkqdbOgyM1Pv_4jmkbgPtVS3lgNhDXE7FIIaJX4CWQiAzFP98D0QyojiAXwuPmDYNCKu6dsEuNOW_Buw0tLZLMdgNdK8phMFmVhWAMptH0zBOR27N1WzwJUjGaTf_W5wHg_ov-WHElIcWlbdEGRlKbh6zQfiG6EhGb5Omw8EoA0nOG6EfgkqvQxId0UMd5wnMD6ya_x34XCOrFLmvCFRULBHSngSZnjehUiXEJGhFlBIJ7CvkYMD4I%26sai%3DAMfl-YQaWI5-Fyn8tG526TbfQL5HJ2v6lH61AcW6n36zkq2yhR9zSH--Dd8w_YPRWsMQGypm20qjMRXb-03EOs6M324SrHf2g9_qAKJNB8RXUY3tDc-dEkwh7GcDCeHYc1aAt6Q4X8snWcRwsWV6CaTrZA%26sig%3DCg0ArKJSzF-U6SAChNhPEAE%26fbs_aeid%3D%5Bgw_fbsaeid%5D%26urlfix%3D1%26adurl%3D;dc_rfl=1,https%3A%2F%2Fkiindred.co%2F$0;xdt=1;crlt=G_fa83Ugy_;stc=1;sttr=97;prcl=s HTTP/1.1
Host: ad.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3e2bab284ed32c65ddf4546344fb69fb.safeframe.googlesyndication.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 27 Nov 2022 18:54:43 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 27305
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sun, 27-Nov-2022 19:09:43 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ad.doubleclick.net/ddm/adi/N472810.3495842KIINDRED/B28926383.351560678;dc_ver=92.271;dc_eid=40004000;sz=970x250;u_sd=1;dc_adk=2550139896;ord=5zw7u3;click=https%3A%2F%2Fadclick.g.doubleclick.net%2Fpcs%2Fclick%3Fxai%3DAKAOjst3byyg6tju0iLjM-HLygwtasp4B-J5kGlWcAvHh46gRo_n-FraGqXGgNZATTvFmPP3naCr2plhYFvxIETBWemBKsz7vwxjQm6EE5-PIyIM47Yy0NtkvOuuGuj1fJY1CwteHdEUSZM4YEdruf1sPAZ5qKvICiDqZVQKrjTUdEZfzX_9S8G1uH7TDR9jcwrE6q8I13x6fHjYXiHtfpecv99Veg0DXOiCUZVDhdc4av1iQk3m-MMmoPxhdWSQjyhck-2Vvvf8p5ytkivJo3kl7LFi_D_BA-YmaM4KVkf1w5MfmFIBgdlPYkcTpsjGVxciXto8uYgAyc391jR7z-iSEF0%26sai%3DAMfl-YTssUs9awUtClYPJo-y3GKQzSYnuxYNpa7Fq-_EJU2_A5PNozpMoxHP2YY_If9ULcPHqa3UsKvZtUPEwYe7kYiM_KyR7HTWQGKeJ9uOT2s_rcPYMPDDuL5VE-SDLvdNqGBBEVRUidnPe5rwQq5teg%26sig%3DCg0ArKJSzOzzjLnRoLDtEAE%26fbs_aeid%3D%5Bgw_fbsaeid%5D%26urlfix%3D1%26adurl%3D;dc_rfl=1,https%3A%2F%2Fkiindred.co%2F$0;xdt=1;crlt=G_fa83Ugy_;stc=1;sttr=178;prcl=s
142.250.74.102200 OK 27 kB URL HTTP/2 ad.doubleclick.net/ddm/adi/N472810.3495842KIINDRED/B28926383.351560678;dc_ver=92.271;dc_eid=40004000;sz=970x250;u_sd=1;dc_adk=2550139896;ord=5zw7u3;click=https%3A%2F%2Fadclick.g.doubleclick.net%2Fpcs%2Fclick%3Fxai%3DAKAOjst3byyg6tju0iLjM-HLygwtasp4B-J5kGlWcAvHh46gRo_n-FraGqXGgNZATTvFmPP3naCr2plhYFvxIETBWemBKsz7vwxjQm6EE5-PIyIM47Yy0NtkvOuuGuj1fJY1CwteHdEUSZM4YEdruf1sPAZ5qKvICiDqZVQKrjTUdEZfzX_9S8G1uH7TDR9jcwrE6q8I13x6fHjYXiHtfpecv99Veg0DXOiCUZVDhdc4av1iQk3m-MMmoPxhdWSQjyhck-2Vvvf8p5ytkivJo3kl7LFi_D_BA-YmaM4KVkf1w5MfmFIBgdlPYkcTpsjGVxciXto8uYgAyc391jR7z-iSEF0%26sai%3DAMfl-YTssUs9awUtClYPJo-y3GKQzSYnuxYNpa7Fq-_EJU2_A5PNozpMoxHP2YY_If9ULcPHqa3UsKvZtUPEwYe7kYiM_KyR7HTWQGKeJ9uOT2s_rcPYMPDDuL5VE-SDLvdNqGBBEVRUidnPe5rwQq5teg%26sig%3DCg0ArKJSzOzzjLnRoLDtEAE%26fbs_aeid%3D%5Bgw_fbsaeid%5D%26urlfix%3D1%26adurl%3D;dc_rfl=1,https%3A%2F%2Fkiindred.co%2F$0;xdt=1;crlt=G_fa83Ugy_;stc=1;sttr=178;prcl=s
IP 142.250.74.102:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (57457), with no line terminators
Hash 2a9fe4ae5f67b1ea13ec40c879763406
ff7cbe0dd390241a967eb79f836e511a3a5ced3c
0a805344cda9bcbb50777df64976d5e605ddce4fba44d770e7d027d8874e852b
GET /ddm/adi/N472810.3495842KIINDRED/B28926383.351560678;dc_ver=92.271;dc_eid=40004000;sz=970x250;u_sd=1;dc_adk=2550139896;ord=5zw7u3;click=https%3A%2F%2Fadclick.g.doubleclick.net%2Fpcs%2Fclick%3Fxai%3DAKAOjst3byyg6tju0iLjM-HLygwtasp4B-J5kGlWcAvHh46gRo_n-FraGqXGgNZATTvFmPP3naCr2plhYFvxIETBWemBKsz7vwxjQm6EE5-PIyIM47Yy0NtkvOuuGuj1fJY1CwteHdEUSZM4YEdruf1sPAZ5qKvICiDqZVQKrjTUdEZfzX_9S8G1uH7TDR9jcwrE6q8I13x6fHjYXiHtfpecv99Veg0DXOiCUZVDhdc4av1iQk3m-MMmoPxhdWSQjyhck-2Vvvf8p5ytkivJo3kl7LFi_D_BA-YmaM4KVkf1w5MfmFIBgdlPYkcTpsjGVxciXto8uYgAyc391jR7z-iSEF0%26sai%3DAMfl-YTssUs9awUtClYPJo-y3GKQzSYnuxYNpa7Fq-_EJU2_A5PNozpMoxHP2YY_If9ULcPHqa3UsKvZtUPEwYe7kYiM_KyR7HTWQGKeJ9uOT2s_rcPYMPDDuL5VE-SDLvdNqGBBEVRUidnPe5rwQq5teg%26sig%3DCg0ArKJSzOzzjLnRoLDtEAE%26fbs_aeid%3D%5Bgw_fbsaeid%5D%26urlfix%3D1%26adurl%3D;dc_rfl=1,https%3A%2F%2Fkiindred.co%2F$0;xdt=1;crlt=G_fa83Ugy_;stc=1;sttr=178;prcl=s HTTP/1.1
Host: ad.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3e2bab284ed32c65ddf4546344fb69fb.safeframe.googlesyndication.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 27 Nov 2022 18:54:43 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 27290
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sun, 27-Nov-2022 19:09:43 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ad.doubleclick.net/ddm/adi/N472810.3495842KIINDRED/B28926383.351899694;dc_ver=92.271;dc_eid=40004000;sz=728x90;u_sd=1;dc_adk=1526423753;ord=phn8ze;click=https%3A%2F%2Fadclick.g.doubleclick.net%2Fpcs%2Fclick%3Fxai%3DAKAOjst97eMccj3a8qdcua4hHoOiVtFGPG6yTv_AKO2L0oloyPrivAJahMMD1qmjs1lDYm-MQY4JT8W-MIZT4lY_rWBdeXPtsu1rKuTC67t0s8UEQCzpbPkzletbD7E0PwMkiIIDSQaYRPMFL2hcWAgSl3U1Z5dikdb-19ZEGamU_oR1BtxpzUzkz7r64aDDO8kDzqYctfnu4Fh0lw-0bWKzxcQE24CbvUYW1uNTQEyp4vUXb9EA2DPITPd6HZw1l8KP8Ok03BUgoBrKaS9X_PvCv4TKvYBCccfZljZiH6aE88hAP1BQq4l9ML0TJ7kt-HsOM1r31zPW0ig-EsI%26sai%3DAMfl-YQ1wdaImiNGKRyPS2H08WEIAo-OZ1mx5mqkruam6fuZr4MfF0QKbztbYrxjOkihCdEbulsuF2aUOqAvKPB7GRwfHF3FDuK_D9yPMdx4OQcUn7ZHbiHr9K3gj4_eYf2iBQONKfeQiNhyC_zzloytGQ%26sig%3DCg0ArKJSzLy73iIylVAGEAE%26fbs_aeid%3D%5Bgw_fbsaeid%5D%26urlfix%3D1%26adurl%3D;dc_rfl=1,https%3A%2F%2Fkiindred.co%2F$0;xdt=1;crlt=G_fa83Ugy_;stc=1;sttr=159;prcl=s
142.250.74.102200 OK 27 kB URL HTTP/2 ad.doubleclick.net/ddm/adi/N472810.3495842KIINDRED/B28926383.351899694;dc_ver=92.271;dc_eid=40004000;sz=728x90;u_sd=1;dc_adk=1526423753;ord=phn8ze;click=https%3A%2F%2Fadclick.g.doubleclick.net%2Fpcs%2Fclick%3Fxai%3DAKAOjst97eMccj3a8qdcua4hHoOiVtFGPG6yTv_AKO2L0oloyPrivAJahMMD1qmjs1lDYm-MQY4JT8W-MIZT4lY_rWBdeXPtsu1rKuTC67t0s8UEQCzpbPkzletbD7E0PwMkiIIDSQaYRPMFL2hcWAgSl3U1Z5dikdb-19ZEGamU_oR1BtxpzUzkz7r64aDDO8kDzqYctfnu4Fh0lw-0bWKzxcQE24CbvUYW1uNTQEyp4vUXb9EA2DPITPd6HZw1l8KP8Ok03BUgoBrKaS9X_PvCv4TKvYBCccfZljZiH6aE88hAP1BQq4l9ML0TJ7kt-HsOM1r31zPW0ig-EsI%26sai%3DAMfl-YQ1wdaImiNGKRyPS2H08WEIAo-OZ1mx5mqkruam6fuZr4MfF0QKbztbYrxjOkihCdEbulsuF2aUOqAvKPB7GRwfHF3FDuK_D9yPMdx4OQcUn7ZHbiHr9K3gj4_eYf2iBQONKfeQiNhyC_zzloytGQ%26sig%3DCg0ArKJSzLy73iIylVAGEAE%26fbs_aeid%3D%5Bgw_fbsaeid%5D%26urlfix%3D1%26adurl%3D;dc_rfl=1,https%3A%2F%2Fkiindred.co%2F$0;xdt=1;crlt=G_fa83Ugy_;stc=1;sttr=159;prcl=s
IP 142.250.74.102:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (57447), with no line terminators
Hash e9ba0789ebe30bfae18fbc357f958730
f442ae7f0998a51227ce1edad8d9afbc830d2637
8d605a417761dc26ace71d15e708a695b93add29e25d0007b7c8bb6e35713e70
GET /ddm/adi/N472810.3495842KIINDRED/B28926383.351899694;dc_ver=92.271;dc_eid=40004000;sz=728x90;u_sd=1;dc_adk=1526423753;ord=phn8ze;click=https%3A%2F%2Fadclick.g.doubleclick.net%2Fpcs%2Fclick%3Fxai%3DAKAOjst97eMccj3a8qdcua4hHoOiVtFGPG6yTv_AKO2L0oloyPrivAJahMMD1qmjs1lDYm-MQY4JT8W-MIZT4lY_rWBdeXPtsu1rKuTC67t0s8UEQCzpbPkzletbD7E0PwMkiIIDSQaYRPMFL2hcWAgSl3U1Z5dikdb-19ZEGamU_oR1BtxpzUzkz7r64aDDO8kDzqYctfnu4Fh0lw-0bWKzxcQE24CbvUYW1uNTQEyp4vUXb9EA2DPITPd6HZw1l8KP8Ok03BUgoBrKaS9X_PvCv4TKvYBCccfZljZiH6aE88hAP1BQq4l9ML0TJ7kt-HsOM1r31zPW0ig-EsI%26sai%3DAMfl-YQ1wdaImiNGKRyPS2H08WEIAo-OZ1mx5mqkruam6fuZr4MfF0QKbztbYrxjOkihCdEbulsuF2aUOqAvKPB7GRwfHF3FDuK_D9yPMdx4OQcUn7ZHbiHr9K3gj4_eYf2iBQONKfeQiNhyC_zzloytGQ%26sig%3DCg0ArKJSzLy73iIylVAGEAE%26fbs_aeid%3D%5Bgw_fbsaeid%5D%26urlfix%3D1%26adurl%3D;dc_rfl=1,https%3A%2F%2Fkiindred.co%2F$0;xdt=1;crlt=G_fa83Ugy_;stc=1;sttr=159;prcl=s HTTP/1.1
Host: ad.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3e2bab284ed32c65ddf4546344fb69fb.safeframe.googlesyndication.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 27 Nov 2022 18:54:43 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 27403
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sun, 27-Nov-2022 19:09:43 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ad.doubleclick.net/ddm/adi/N472810.3495842KIINDRED/B28926383.351899694;dc_ver=92.271;dc_eid=40004001;sz=728x90;u_sd=1;dc_adk=1027830032;ord=8qvpv7;click=https%3A%2F%2Fadclick.g.doubleclick.net%2Fpcs%2Fclick%3Fxai%3DAKAOjsuOPReCHtmveXfeCo3xAEiHfHB0KXqnT4DZjvmpa7sHPf4Dvr6bKGx8M_ZgMIRpVVWow0dtSIZy4WKU1rzBKpvi9Rn7Gj6_j1hlwm06jQdCkIC5k0Xp8-5YrC7kNbVSb0nocumgCy8sAfCWvMLezKmPNf9F5oyWXBaA7g7f0FtRv0rOulrKtshrgdZnUmi5-IXbqJtFdoMUkqj4aGRNwj7ZTHfyq4jI5IofvI6wEt0PM0LT5wbtMnf-9Hh7E_UEsV3TZXvQRlqND3ZCP-YU-2pXfl7DqIlD0VlndNCLgsJFG716obDBdzQ5_WuyKD0gu6IUk_dUn9SmZdE%26sai%3DAMfl-YQSBpPrtfUnLd_k9-tC1PjC2zBCto96MOCktCLK2Dmo8RKDFQx4lavbg6rYWKjgShDTMAFAM2bj_cbItkTuHObEFKQBG_khfe8ULhdrpAnOyPdXhcflJZKrlEDL0q5YhL_B5-t2qivlxd6kQc8BZg%26sig%3DCg0ArKJSzHB_Ucs_ZNoYEAE%26fbs_aeid%3D%5Bgw_fbsaeid%5D%26urlfix%3D1%26adurl%3D;dc_rfl=1,https%3A%2F%2Fkiindred.co%2F$0;xdt=1;crlt=G_fa83Ugy_;stc=1;sttr=136;prcl=s
142.250.74.102200 OK 27 kB URL HTTP/2 ad.doubleclick.net/ddm/adi/N472810.3495842KIINDRED/B28926383.351899694;dc_ver=92.271;dc_eid=40004001;sz=728x90;u_sd=1;dc_adk=1027830032;ord=8qvpv7;click=https%3A%2F%2Fadclick.g.doubleclick.net%2Fpcs%2Fclick%3Fxai%3DAKAOjsuOPReCHtmveXfeCo3xAEiHfHB0KXqnT4DZjvmpa7sHPf4Dvr6bKGx8M_ZgMIRpVVWow0dtSIZy4WKU1rzBKpvi9Rn7Gj6_j1hlwm06jQdCkIC5k0Xp8-5YrC7kNbVSb0nocumgCy8sAfCWvMLezKmPNf9F5oyWXBaA7g7f0FtRv0rOulrKtshrgdZnUmi5-IXbqJtFdoMUkqj4aGRNwj7ZTHfyq4jI5IofvI6wEt0PM0LT5wbtMnf-9Hh7E_UEsV3TZXvQRlqND3ZCP-YU-2pXfl7DqIlD0VlndNCLgsJFG716obDBdzQ5_WuyKD0gu6IUk_dUn9SmZdE%26sai%3DAMfl-YQSBpPrtfUnLd_k9-tC1PjC2zBCto96MOCktCLK2Dmo8RKDFQx4lavbg6rYWKjgShDTMAFAM2bj_cbItkTuHObEFKQBG_khfe8ULhdrpAnOyPdXhcflJZKrlEDL0q5YhL_B5-t2qivlxd6kQc8BZg%26sig%3DCg0ArKJSzHB_Ucs_ZNoYEAE%26fbs_aeid%3D%5Bgw_fbsaeid%5D%26urlfix%3D1%26adurl%3D;dc_rfl=1,https%3A%2F%2Fkiindred.co%2F$0;xdt=1;crlt=G_fa83Ugy_;stc=1;sttr=136;prcl=s
IP 142.250.74.102:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (57387), with no line terminators
Hash bba3d47cb406c8fa78601239f2075b50
2b0df858efbf7f82f1efac912d654b9018e02278
04117e6b9862a9d918f60c5625a38b8bc19b9642062c3c128dc792ad07ee0765
GET /ddm/adi/N472810.3495842KIINDRED/B28926383.351899694;dc_ver=92.271;dc_eid=40004001;sz=728x90;u_sd=1;dc_adk=1027830032;ord=8qvpv7;click=https%3A%2F%2Fadclick.g.doubleclick.net%2Fpcs%2Fclick%3Fxai%3DAKAOjsuOPReCHtmveXfeCo3xAEiHfHB0KXqnT4DZjvmpa7sHPf4Dvr6bKGx8M_ZgMIRpVVWow0dtSIZy4WKU1rzBKpvi9Rn7Gj6_j1hlwm06jQdCkIC5k0Xp8-5YrC7kNbVSb0nocumgCy8sAfCWvMLezKmPNf9F5oyWXBaA7g7f0FtRv0rOulrKtshrgdZnUmi5-IXbqJtFdoMUkqj4aGRNwj7ZTHfyq4jI5IofvI6wEt0PM0LT5wbtMnf-9Hh7E_UEsV3TZXvQRlqND3ZCP-YU-2pXfl7DqIlD0VlndNCLgsJFG716obDBdzQ5_WuyKD0gu6IUk_dUn9SmZdE%26sai%3DAMfl-YQSBpPrtfUnLd_k9-tC1PjC2zBCto96MOCktCLK2Dmo8RKDFQx4lavbg6rYWKjgShDTMAFAM2bj_cbItkTuHObEFKQBG_khfe8ULhdrpAnOyPdXhcflJZKrlEDL0q5YhL_B5-t2qivlxd6kQc8BZg%26sig%3DCg0ArKJSzHB_Ucs_ZNoYEAE%26fbs_aeid%3D%5Bgw_fbsaeid%5D%26urlfix%3D1%26adurl%3D;dc_rfl=1,https%3A%2F%2Fkiindred.co%2F$0;xdt=1;crlt=G_fa83Ugy_;stc=1;sttr=136;prcl=s HTTP/1.1
Host: ad.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3e2bab284ed32c65ddf4546344fb69fb.safeframe.googlesyndication.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 27 Nov 2022 18:54:43 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 27420
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sun, 27-Nov-2022 19:09:43 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ad.doubleclick.net/ddm/adi/N472810.3495842KIINDRED/B28926383.351899694;dc_ver=92.271;dc_eid=40004001;sz=728x90;u_sd=1;dc_adk=2291457577;ord=3gz0e9;click=https%3A%2F%2Fadclick.g.doubleclick.net%2Fpcs%2Fclick%3Fxai%3DAKAOjsvTd-IEUyLWjxHgHizaNgdwXNBG1kQifbZugsUyqaoRoVLcUahALzzvQ7BBCyUG3SbS6JOVRMF8zsdtdBEttH-wp0IdDFsNAPMPs6O-yXKJOhEFAJYvWM2RGhXV5_dfXuHAGYpE15mZKIN1GwS6JuZlnrHK0b6xtq8HBBx2TyBopEZz4jwWJ4Y5zbM81EbgDvFaHjJJC-IgR_uS6FZfsg7dOEue9I4-5ZA0wngzHtPfr2DAedltgwNDfTb_48g23ll-HytF-gnX8H802Eh7E1rXsX9Tlr4hvT3CuQ2natOvosaDavjL65szvHPOvInAA5SpEiSmJywvhPo%26sai%3DAMfl-YSqX7NrvU77ITOgVxvCwb-ydZzqvQPFiH_mlGO-TPfTJ7BgagBSv0BJRpP9GsMqyL_LpgPCv0T5rcLLWp3vgTrQJsRAwB30LwbJu6X9sUxxZ7lUG2JlraMyiYDbdG_A5OSQZBtq9zp7bMLN7IGBWA%26sig%3DCg0ArKJSzKXL2dpyeg9lEAE%26fbs_aeid%3D%5Bgw_fbsaeid%5D%26urlfix%3D1%26adurl%3D;dc_rfl=1,https%3A%2F%2Fkiindred.co%2F$0;xdt=1;crlt=G_fa83Ugy_;stc=1;sttr=197;prcl=s
142.250.74.102200 OK 28 kB URL HTTP/2 ad.doubleclick.net/ddm/adi/N472810.3495842KIINDRED/B28926383.351899694;dc_ver=92.271;dc_eid=40004001;sz=728x90;u_sd=1;dc_adk=2291457577;ord=3gz0e9;click=https%3A%2F%2Fadclick.g.doubleclick.net%2Fpcs%2Fclick%3Fxai%3DAKAOjsvTd-IEUyLWjxHgHizaNgdwXNBG1kQifbZugsUyqaoRoVLcUahALzzvQ7BBCyUG3SbS6JOVRMF8zsdtdBEttH-wp0IdDFsNAPMPs6O-yXKJOhEFAJYvWM2RGhXV5_dfXuHAGYpE15mZKIN1GwS6JuZlnrHK0b6xtq8HBBx2TyBopEZz4jwWJ4Y5zbM81EbgDvFaHjJJC-IgR_uS6FZfsg7dOEue9I4-5ZA0wngzHtPfr2DAedltgwNDfTb_48g23ll-HytF-gnX8H802Eh7E1rXsX9Tlr4hvT3CuQ2natOvosaDavjL65szvHPOvInAA5SpEiSmJywvhPo%26sai%3DAMfl-YSqX7NrvU77ITOgVxvCwb-ydZzqvQPFiH_mlGO-TPfTJ7BgagBSv0BJRpP9GsMqyL_LpgPCv0T5rcLLWp3vgTrQJsRAwB30LwbJu6X9sUxxZ7lUG2JlraMyiYDbdG_A5OSQZBtq9zp7bMLN7IGBWA%26sig%3DCg0ArKJSzKXL2dpyeg9lEAE%26fbs_aeid%3D%5Bgw_fbsaeid%5D%26urlfix%3D1%26adurl%3D;dc_rfl=1,https%3A%2F%2Fkiindred.co%2F$0;xdt=1;crlt=G_fa83Ugy_;stc=1;sttr=197;prcl=s
IP 142.250.74.102:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (57584), with no line terminators
Hash 8942a7646074dcd936b46bcf1e701138
a63129d75bc32fd7d32c71b7a8ff3dcb69325171
9cfe23b144f4d07cc96006b8abd740b89bbe1a1f919de8bb1b6bb0fafd7e55fc
GET /ddm/adi/N472810.3495842KIINDRED/B28926383.351899694;dc_ver=92.271;dc_eid=40004001;sz=728x90;u_sd=1;dc_adk=2291457577;ord=3gz0e9;click=https%3A%2F%2Fadclick.g.doubleclick.net%2Fpcs%2Fclick%3Fxai%3DAKAOjsvTd-IEUyLWjxHgHizaNgdwXNBG1kQifbZugsUyqaoRoVLcUahALzzvQ7BBCyUG3SbS6JOVRMF8zsdtdBEttH-wp0IdDFsNAPMPs6O-yXKJOhEFAJYvWM2RGhXV5_dfXuHAGYpE15mZKIN1GwS6JuZlnrHK0b6xtq8HBBx2TyBopEZz4jwWJ4Y5zbM81EbgDvFaHjJJC-IgR_uS6FZfsg7dOEue9I4-5ZA0wngzHtPfr2DAedltgwNDfTb_48g23ll-HytF-gnX8H802Eh7E1rXsX9Tlr4hvT3CuQ2natOvosaDavjL65szvHPOvInAA5SpEiSmJywvhPo%26sai%3DAMfl-YSqX7NrvU77ITOgVxvCwb-ydZzqvQPFiH_mlGO-TPfTJ7BgagBSv0BJRpP9GsMqyL_LpgPCv0T5rcLLWp3vgTrQJsRAwB30LwbJu6X9sUxxZ7lUG2JlraMyiYDbdG_A5OSQZBtq9zp7bMLN7IGBWA%26sig%3DCg0ArKJSzKXL2dpyeg9lEAE%26fbs_aeid%3D%5Bgw_fbsaeid%5D%26urlfix%3D1%26adurl%3D;dc_rfl=1,https%3A%2F%2Fkiindred.co%2F$0;xdt=1;crlt=G_fa83Ugy_;stc=1;sttr=197;prcl=s HTTP/1.1
Host: ad.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3e2bab284ed32c65ddf4546344fb69fb.safeframe.googlesyndication.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 27 Nov 2022 18:54:43 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 27523
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sun, 27-Nov-2022 19:09:43 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ad.doubleclick.net/ddm/adi/N472810.3495842KIINDRED/B28926383.351560678;dc_ver=92.271;sz=970x250;u_sd=1;dc_adk=3381710146;ord=79798w;click=https%3A%2F%2Fadclick.g.doubleclick.net%2Fpcs%2Fclick%3Fxai%3DAKAOjssMrpRzIZ5jeC91GKmYSN4KoEow4vsS1e1n-lJoZrR7mwTUx106HM_WJw-NMO_x3ILaMxr8AKTMgz9FMbxdE6ZLCddcMJooS-Q94eGJmWzvggM14q7rVZhccwS9FjTseN-gZ3jN5J8kgkgAcumhhbMI2hafLvgdXVuEcbIA5nJ8Ss06qOrAdkFqCbN55olBV-lqRY2rrfOlGZKBvlZGggEz5GHrh3DuEyy3GegzErgS9j5lveuWuP4m9m-6YrwXhvFFgOEh52pBJRpad7d8lPn-md0dvaa3jVPJad-XDuIi0wXmt1C9-M9YCG_0MJC15n7asnmdrkgb-WxlGuZ1jm0%26sai%3DAMfl-YR0ZVKgkNqzgDL9asDooGNki4LcpnrILzXVdQtARC7p98oofkI6QWV50IjJ6KtsPjlBUQY84yFlAaSJU6YG6zudkksDTiux2pm0e2SKras06eocjCiKRBEKcLsZ4-OOAU0Hhhif-q1gtmxWdGVYEg%26sig%3DCg0ArKJSzKFX87UuO_n9EAE%26fbs_aeid%3D%5Bgw_fbsaeid%5D%26urlfix%3D1%26adurl%3D;dc_rfl=1,https%3A%2F%2Fkiindred.co%2F$0;xdt=1;crlt=G_fa83Ugy_;stc=1;sttr=216;prcl=s
142.250.74.102200 OK 28 kB URL HTTP/2 ad.doubleclick.net/ddm/adi/N472810.3495842KIINDRED/B28926383.351560678;dc_ver=92.271;sz=970x250;u_sd=1;dc_adk=3381710146;ord=79798w;click=https%3A%2F%2Fadclick.g.doubleclick.net%2Fpcs%2Fclick%3Fxai%3DAKAOjssMrpRzIZ5jeC91GKmYSN4KoEow4vsS1e1n-lJoZrR7mwTUx106HM_WJw-NMO_x3ILaMxr8AKTMgz9FMbxdE6ZLCddcMJooS-Q94eGJmWzvggM14q7rVZhccwS9FjTseN-gZ3jN5J8kgkgAcumhhbMI2hafLvgdXVuEcbIA5nJ8Ss06qOrAdkFqCbN55olBV-lqRY2rrfOlGZKBvlZGggEz5GHrh3DuEyy3GegzErgS9j5lveuWuP4m9m-6YrwXhvFFgOEh52pBJRpad7d8lPn-md0dvaa3jVPJad-XDuIi0wXmt1C9-M9YCG_0MJC15n7asnmdrkgb-WxlGuZ1jm0%26sai%3DAMfl-YR0ZVKgkNqzgDL9asDooGNki4LcpnrILzXVdQtARC7p98oofkI6QWV50IjJ6KtsPjlBUQY84yFlAaSJU6YG6zudkksDTiux2pm0e2SKras06eocjCiKRBEKcLsZ4-OOAU0Hhhif-q1gtmxWdGVYEg%26sig%3DCg0ArKJSzKFX87UuO_n9EAE%26fbs_aeid%3D%5Bgw_fbsaeid%5D%26urlfix%3D1%26adurl%3D;dc_rfl=1,https%3A%2F%2Fkiindred.co%2F$0;xdt=1;crlt=G_fa83Ugy_;stc=1;sttr=216;prcl=s
IP 142.250.74.102:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (57650), with no line terminators
Hash 4b936bf41205a372eef0198f253b0e5b
4489c9cfe6748b8f6a508aaf05a73cceecce02fb
2bad5370ac06b0ddbe365958aadb391abd026bf2d07732854634b7e08f75f285
GET /ddm/adi/N472810.3495842KIINDRED/B28926383.351560678;dc_ver=92.271;sz=970x250;u_sd=1;dc_adk=3381710146;ord=79798w;click=https%3A%2F%2Fadclick.g.doubleclick.net%2Fpcs%2Fclick%3Fxai%3DAKAOjssMrpRzIZ5jeC91GKmYSN4KoEow4vsS1e1n-lJoZrR7mwTUx106HM_WJw-NMO_x3ILaMxr8AKTMgz9FMbxdE6ZLCddcMJooS-Q94eGJmWzvggM14q7rVZhccwS9FjTseN-gZ3jN5J8kgkgAcumhhbMI2hafLvgdXVuEcbIA5nJ8Ss06qOrAdkFqCbN55olBV-lqRY2rrfOlGZKBvlZGggEz5GHrh3DuEyy3GegzErgS9j5lveuWuP4m9m-6YrwXhvFFgOEh52pBJRpad7d8lPn-md0dvaa3jVPJad-XDuIi0wXmt1C9-M9YCG_0MJC15n7asnmdrkgb-WxlGuZ1jm0%26sai%3DAMfl-YR0ZVKgkNqzgDL9asDooGNki4LcpnrILzXVdQtARC7p98oofkI6QWV50IjJ6KtsPjlBUQY84yFlAaSJU6YG6zudkksDTiux2pm0e2SKras06eocjCiKRBEKcLsZ4-OOAU0Hhhif-q1gtmxWdGVYEg%26sig%3DCg0ArKJSzKFX87UuO_n9EAE%26fbs_aeid%3D%5Bgw_fbsaeid%5D%26urlfix%3D1%26adurl%3D;dc_rfl=1,https%3A%2F%2Fkiindred.co%2F$0;xdt=1;crlt=G_fa83Ugy_;stc=1;sttr=216;prcl=s HTTP/1.1
Host: ad.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://3e2bab284ed32c65ddf4546344fb69fb.safeframe.googlesyndication.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 27 Nov 2022 18:54:43 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 27459
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sun, 27-Nov-2022 19:09:43 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 9cff2c2ad4207e09e07c017987177850
833082ded91a1983a1367c48c8076949e079ce95
82b03e92d004f116875ba023a7e8782d3c124a1c499a6328f29cff70f397a6cc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 18:54:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
b.clarity.ms/collect
20.75.32.255204 No Content 0 B IP 20.75.32.255:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: b.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1503
Origin: https://kiindred.co
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
access-control-allow-origin: https://kiindred.co
access-control-allow-credentials: true
date: Sun, 27 Nov 2022 18:54:43 GMT
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 741ddfb19764ac9a77509e7e87cfbfb2
308c08784ce4a0757cbd112807555b83e17a1d56
e9271a76da94d8b655860c3b00d111396c5d3a227fd2f19e0ef400fd5e84d87e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8817
x-amzn-requestid: 33d3ca17-7878-4897-a634-5f626a64e820
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cJ40OEOqIAMFaOg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6380a1b4-040288d571fc10b96d893fa4;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 11:06:28 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: f_U8KSYET6kaKAPbEV7sHW0tO6JGijsqUvghniwzFCRd2YGQjVlFoA==
via: 1.1 f313d3df80c4dab8f5399614116801cc.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 10:16:35 GMT
age: 31089
etag: "308c08784ce4a0757cbd112807555b83e17a1d56"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-2831502.js?sv=7
54.230.111.66200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-2831502.js?sv=7
IP 54.230.111.66:0
GET /c/hotjar-2831502.js?sv=7 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Sun, 27 Nov 2022 18:54:41 GMT
access-control-allow-origin: *
cache-control: max-age=60
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
etag: W/5d2df43def46ea6779b17caa4f874080
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: X3IX8Z3_B1atJ_iFY52NOxzL5mGtGUBRaR6DGTbeLg9s4EGVUF9GOQ==
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/config.js?sdkid=CBTDVJBC77UBFBMM2NN0&hostname=kiindred.co
23.36.79.17200 OK 0 B URL HTTP/2 analytics.tiktok.com/i18n/pixel/config.js?sdkid=CBTDVJBC77UBFBMM2NN0&hostname=kiindred.co
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
GET /i18n/pixel/config.js?sdkid=CBTDVJBC77UBFBMM2NN0&hostname=kiindred.co HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 20221127185438EFB253D934444F022FA1
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60640c7f1414959715d2b41a87a89104928283d15e1ce5a3ff26a8726463cf24d7662ccdce2efa41a2d9a03035bf595512ea43817e9a1ecad49b334f94a94bf6b924f42719444d7a3c46226506f3b381e1
content-encoding: gzip
x-origin-response-time: 13,23.44.237.132
x-akamai-request-id: 120c0afe.924d25fc
expires: Sun, 27 Nov 2022 18:54:39 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 27 Nov 2022 18:54:39 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
vary: Accept-Encoding
set-cookie: _ttp=2I8twmZVtBVideWjnmeoZPK8EKJ; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-cache-remote: TCP_MISS from a23-44-237-132.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=97, origin; dur=13, inner; dur=3
x-parent-response-time: 110,23.36.79.13
X-Firefox-Spdy: h2
diffuser-cdn.app-us1.com/diffuser/diffuser.js
104.17.146.91200 OK 0 B URL HTTP/2 diffuser-cdn.app-us1.com/diffuser/diffuser.js
IP 104.17.146.91:0
GET /diffuser/diffuser.js HTTP/1.1
Host: diffuser-cdn.app-us1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 18:54:36 GMT
content-type: application/javascript
last-modified: Thu, 21 Oct 2021 17:42:06 GMT
etag: W/"4d482a43613d3966f353ec9d97452e0c"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 059f85e5e664bc876c915622803d9e28.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-C2
x-amz-cf-id: LYgb7O-05A19YisedsHdW7Gqa3Bw46pjlPKvIkZSVBpaULKohYEzzQ==
cf-cache-status: HIT
age: 160
server: cloudflare
cf-ray: 770d12c57ca4b509-OSL
X-Firefox-Spdy: h2
prism.app-us1.com/?a=610418816&u=https%3A%2F%2Fkiindred.co%2F
104.17.146.91200 OK 0 B URL HTTP/2 prism.app-us1.com/?a=610418816&u=https%3A%2F%2Fkiindred.co%2F
IP 104.17.146.91:0
GET /?a=610418816&u=https%3A%2F%2Fkiindred.co%2F HTTP/1.1
Host: prism.app-us1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 18:54:36 GMT
content-type: application/javascript
cache-control: no-cache, private
set-cookie: prism_610418816=4d81a89c-e0cf-4d59-a716-665a9181325c; expires=Tue, 27-Dec-2022 18:54:36 GMT; Max-Age=2592000; path=/; secure; httponly; samesite=none
x-envoy-upstream-service-time: 50
x-powered-by: PHP/7.4.32
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 770d12c5cd5fb509-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
r.skimresources.com/api/
35.190.59.101200 OK 0 B IP 35.190.59.101:0
POST /api/ HTTP/1.1
Host: r.skimresources.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 336
Origin: https://kiindred.co
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: openresty/1.19.9.1
date: Sun, 27 Nov 2022 18:54:41 GMT
content-type: application/json
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-origin: https://kiindred.co
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/identify.js
23.36.79.17200 OK 0 B URL HTTP/2 analytics.tiktok.com/i18n/pixel/identify.js
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
GET /i18n/pixel/identify.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 20221127185438116381D9C8BB52F7E572
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf601c5f6a04a777121cde7d9af65489455e354b640d8ae1cd9ea0aa8dec17c3fa97fa9a0a906d79a4b99b58a1a9b091ea99a7d1a323dc70316ed439348e99726893
content-encoding: gzip
expires: Sun, 27 Nov 2022 18:54:39 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 27 Nov 2022 18:54:39 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=3, cdn-cache; desc=MISS, edge; dur=0, origin; dur=105
x-origin-response-time: 105,23.36.79.13
x-akamai-request-id: 924d25dc
X-Firefox-Spdy: h2
secure.quantserve.com/quant.js
91.228.74.168200 OK 0 B URL HTTP/2 secure.quantserve.com/quant.js
IP 91.228.74.168:0
GET /quant.js HTTP/1.1
Host: secure.quantserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kiindred.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 18:54:41 GMT
content-type: application/javascript
accept-ranges: bytes
cache-control: private, max-age=604800
content-encoding: gzip
etag: "nAbmxtqHqaYrwBiADJAeFg=="
expires: Sun, 04 Dec 2022 18:54:41 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2