r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d2560f62890e75b8de444fed96c22f52
334ce0c48e606ee029f31eeb1463af87b1024bb9
4397e6b45b5822fbab9b83abe0b96ee70efba7cd2160b51936159865ede5fdb1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4397E6B45B5822FBAB9B83ABE0B96EE70EFBA7CD2160B51936159865EDE5FDB1"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6679
Expires: Mon, 26 Sep 2022 01:05:36 GMT
Date: Sun, 25 Sep 2022 23:14:17 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 25 Sep 2022 22:15:14 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: w-qnryxqDPmxBrtklWMJD4x5Ha_1Wuv6ryzu4gbk0EuD0zMadAecxQ==
Age: 3543
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.110200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.110:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sun, 25 Sep 2022 04:35:15 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 4K78V-4qoiz82nlWnWyahG6LjDJgNxAUS_vj_R55BI47xc2CHI_eKw==
age: 67143
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 23:14:18 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
altostima.com/
13.56.33.8301 Moved Permanently 175 B IP 13.56.33.8:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 00b1749e7f34b8de5bde2b4abd5cefef
da5846fe6898511ed9dcf79f12d78042fb649e01
b5aa18241aa2adbec8f48b308a46a386e31040f6bb85ca381e427b399679b56e
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: altostima.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: openresty/1.15.8.2
Date: Sun, 25 Sep 2022 23:14:18 GMT
Content-Type: text/html
Content-Length: 175
Connection: keep-alive
Referrer-Policy: no-referrer
Location: https://www.brandbucket.com/names/altostima?source=ext
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Sun, 25 Sep 2022 23:04:18 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Sun, 25 Sep 2022 23:20:11 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: NzoeQOBbMO_CG-e0pjiqHX1CU-Q233kcxuEOErr71fs2FOg1nCm-Rg==
Age: 601
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash c5819b2a172384c0fe422c60b368f97a
3c818710dce5f2e54a0f758ca3471fcbdec29a77
9791ed31e44b12fb253d6118540e4d6ff91e946512ba392cb66b373423879af5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 23:14:18 GMT
Server: ECS (amb/6BB2)
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fd3b36dc2b620b48de491a8d9ba00fc0
be67ba7db5215dcb7c9225876e35a5e0a5005c9e
28205ee62c77b1caad6cc24c1ce98ddb92d26f67d41270f7d5278208a907c62f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5158
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 23:14:18 GMT
Last-Modified: Sun, 25 Sep 2022 21:48:20 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
44.242.3.166101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.242.3.166:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: fqyTw1nBeevtYjHnccZqmg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 27u61y8SwTyI4jK36d9xJ7WlE0I=
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d1256b6452c58ffb05e1db44d9d37a5f
04538f69abefe1019a0c4c6cc1fd3ffe5a5b2cfd
4bf592b24e41cf58e4ea973378a8559c4011a25ccdc51cc7a31457cc6561d22b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 23:14:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 2ed12dac83601782b8f2771d20362695
4d4c6755987398ee36e1639777a229cccb5c6d06
50bb2bffe1d12013725c20d2dbef2b9647408c0908b1c169ee16a43a0e51d72b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 23:14:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 2ed12dac83601782b8f2771d20362695
4d4c6755987398ee36e1639777a229cccb5c6d06
50bb2bffe1d12013725c20d2dbef2b9647408c0908b1c169ee16a43a0e51d72b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 23:14:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 2ed12dac83601782b8f2771d20362695
4d4c6755987398ee36e1639777a229cccb5c6d06
50bb2bffe1d12013725c20d2dbef2b9647408c0908b1c169ee16a43a0e51d72b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 23:14:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2
142.250.74.163200 OK 11 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 11028, version 1.0\012- data
Hash 1f6d3cf6d38f25d83d95f5a800b8cac3
279f300ca2cbbdf9f5036ef2f438607fbf377daa
796de064b8d80eba7ccacb8ba67d77fdbcdf4b385c844645d452c24537b3108f
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.brandbucket.com
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Sep 2022 17:24:34 GMT
expires: Fri, 22 Sep 2023 17:24:34 GMT
cache-control: public, max-age=31536000
age: 280185
last-modified: Wed, 11 May 2022 19:24:50 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 2ed12dac83601782b8f2771d20362695
4d4c6755987398ee36e1639777a229cccb5c6d06
50bb2bffe1d12013725c20d2dbef2b9647408c0908b1c169ee16a43a0e51d72b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 23:14:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 2ed12dac83601782b8f2771d20362695
4d4c6755987398ee36e1639777a229cccb5c6d06
50bb2bffe1d12013725c20d2dbef2b9647408c0908b1c169ee16a43a0e51d72b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 23:14:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.ampproject.org/v0/amp-analytics-0.1.js
216.58.211.1200 OK 32 kB URL HTTP/2 cdn.ampproject.org/v0/amp-analytics-0.1.js
IP 216.58.211.1:0
File type ASCII text, with very long lines (65534)
Hash 82e8046647ef3e80d0a2fbd4f3ac0387
3685424a44ef7c5aee4f3f725eaaa2f3d905c7c2
575d7b93bf247431ecc37528af8df82a026a06297f7d4382dce6235a9affd4f6
GET /v0/amp-analytics-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 31959
date: Sun, 25 Sep 2022 23:14:19 GMT
expires: Sun, 25 Sep 2022 23:14:19 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "ca421db8126f307e"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.ampproject.org/v0/amp-iframe-0.1.js
216.58.211.1200 OK 9.0 kB URL HTTP/2 cdn.ampproject.org/v0/amp-iframe-0.1.js
IP 216.58.211.1:0
File type ASCII text, with very long lines (25649)
Hash 5cfe36a8dbb966b30290ae29a7d229e2
bfcdf9b25a82f8b668b013ec67404cdcb181d0bd
75b032840bdb96eaed05a4e71cf5c4e2d852e741ce2fe31ec8dc304d03d5ea62
GET /v0/amp-iframe-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 8962
date: Sun, 25 Sep 2022 23:14:19 GMT
expires: Sun, 25 Sep 2022 23:14:19 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "72c538977319106e"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.ampproject.org/v0/amp-accordion-0.1.js
216.58.211.1200 OK 5.9 kB URL HTTP/2 cdn.ampproject.org/v0/amp-accordion-0.1.js
IP 216.58.211.1:0
File type ASCII text, with very long lines (17551)
Hash 3c4e24d378907b1728a5b6a1589e1ff4
4a26fb3299c84217daefcf8447d128c1b8716923
1d5cdca9ee6489e71c5d5054721fc572096338996f0e56e9ae618a7c0ffe1c25
GET /v0/amp-accordion-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 5868
date: Sun, 25 Sep 2022 23:14:19 GMT
expires: Sun, 25 Sep 2022 23:14:19 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "46f06427211dc47d"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.ampproject.org/v0/amp-animation-0.1.js
216.58.211.1200 OK 19 kB URL HTTP/2 cdn.ampproject.org/v0/amp-animation-0.1.js
IP 216.58.211.1:0
File type Unicode text, UTF-8 text, with very long lines (65532)
Hash 4a762a6928765996199bc07e3e49a3ad
d0fee675841b79b08cf08476953acd051bf9aaaa
062f43a0860840fa4f4e0671ac0d3b598417acd342c64f8a6e4e7d8e30754519
GET /v0/amp-animation-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 18975
date: Sun, 25 Sep 2022 23:14:19 GMT
expires: Sun, 25 Sep 2022 23:14:19 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "35019d937cf0d157"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.ampproject.org/v0/amp-action-macro-0.1.js
216.58.211.1200 OK 1.5 kB URL HTTP/2 cdn.ampproject.org/v0/amp-action-macro-0.1.js
IP 216.58.211.1:0
File type ASCII text, with very long lines (3580)
Hash cc75b2874aca81522b0fd319d64477ca
97cb146404e2607801ce61eb6c8b7726ce43e120
73345d8e573e3a4d7df7423f7b1edba981ab961a3ff654143bb0b117cb2016c7
GET /v0/amp-action-macro-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 1462
date: Sun, 25 Sep 2022 23:14:19 GMT
expires: Sun, 25 Sep 2022 23:14:19 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "ec943dc596607bfd"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.brandbucket.com/images2/nice_bk1_thumb.jpg
104.22.7.216200 OK 5.8 kB URL HTTP/2 www.brandbucket.com/images2/nice_bk1_thumb.jpg
IP 104.22.7.216:0
File type JPEG image data, progressive, precision 8, 150x98, components 3\012- data
Hash b4dad318d2eef70faeb94c1de940b8e9
fd7b8e6d33dfdb9514f59ba26b855ec61f2b21ce
d4f3a8ecf34eb859108c375c36cca14e484d752a87763c58a80e20220e866004
GET /images2/nice_bk1_thumb.jpg HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/altostima?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=kepo6ecug62k16e09he9momal2; land_URL=1664147659%3B%2Fnames%2Faltostima%3Fsource%3Dext; land_referrer=1664147659%3B; bb_recent=355890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 23:14:19 GMT
content-type: image/jpeg
content-length: 5793
cf-bgj: imgq:100,h2pri
cf-polished: origSize=16185
etag: "5ee1f38e-3f39"
last-modified: Thu, 11 Jun 2020 09:04:14 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 1319
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7507749a19c7b51e-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images2/nice_bk2_thumb.jpg
104.22.7.216200 OK 6.6 kB URL HTTP/2 www.brandbucket.com/images2/nice_bk2_thumb.jpg
IP 104.22.7.216:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, progressive, precision 8, 150x96, components 3\012- data
Hash 87c01ad06c8f0f82f63762112b62c261
4c58266d4e8d2d205fbfe88af39d47e96e353733
96d5437cff72a446bada499ea347636473a33dc3f6a09a5bcce71e794bb7b8dd
GET /images2/nice_bk2_thumb.jpg HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/altostima?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=kepo6ecug62k16e09he9momal2; land_URL=1664147659%3B%2Fnames%2Faltostima%3Fsource%3Dext; land_referrer=1664147659%3B; bb_recent=355890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 23:14:19 GMT
content-type: image/jpeg
content-length: 6565
cf-bgj: imgq:100,h2pri
cf-polished: origSize=16629
etag: "5ee1f391-40f5"
last-modified: Thu, 11 Jun 2020 09:04:17 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 1319
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7507749a19c8b51e-OSL
X-Firefox-Spdy: h2
cdn.ampproject.org/v0/amp-lightbox-0.1.js
216.58.211.1200 OK 8.5 kB URL HTTP/2 cdn.ampproject.org/v0/amp-lightbox-0.1.js
IP 216.58.211.1:0
File type ASCII text, with very long lines (26324)
Hash b1420682f56556a3adee77d446e78f5b
6256841a19eb6f6a8d0a4b54d604c82c78e5beb4
49d833ac01be0ef4ebe1a007512cb9070081f93f3f28aa443ddec1187da577f5
GET /v0/amp-lightbox-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 8468
date: Sun, 25 Sep 2022 23:14:19 GMT
expires: Sun, 25 Sep 2022 23:14:19 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "c268beb03dc2ca4c"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.ampproject.org/v0/amp-recaptcha-input-0.1.js
216.58.211.1200 OK 9.2 kB URL HTTP/2 cdn.ampproject.org/v0/amp-recaptcha-input-0.1.js
IP 216.58.211.1:0
File type ASCII text, with very long lines (25191)
Hash c454d0ece58f1eaf1b24b5e9d9b9d06a
545ce7ce5da23f27f642dce60042467067ee66a4
a10913d118edb6c5eef98afe5355df9b5bbe95aa327894ecbda30df63a55221f
GET /v0/amp-recaptcha-input-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 9199
date: Sun, 25 Sep 2022 23:14:19 GMT
expires: Sun, 25 Sep 2022 23:14:19 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "62d5c12e2446f0f1"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.ampproject.org/v0/amp-list-0.1.js
216.58.211.1200 OK 13 kB URL HTTP/2 cdn.ampproject.org/v0/amp-list-0.1.js
IP 216.58.211.1:0
File type Unicode text, UTF-8 text, with very long lines (42785)
Hash d1172160e7be14f9787357e47aa29921
e94f84e91633cc0332f1da783f47a84921180527
24e044711774d90fcbe1ccc1f934fe21e57b1bbad7678a57c434f717ccf1dfdd
GET /v0/amp-list-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 12904
date: Sun, 25 Sep 2022 23:14:19 GMT
expires: Sun, 25 Sep 2022 23:14:19 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "4c269610714898dc"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.brandbucket.com/images2/nice_bk4_thumb.jpg
104.22.7.216200 OK 6.1 kB URL HTTP/2 www.brandbucket.com/images2/nice_bk4_thumb.jpg
IP 104.22.7.216:0
File type JPEG image data, progressive, precision 8, 150x96, components 3\012- data
Hash 57aee6ca35013ad9b91ae2583c1831f7
73616462427ff5288ac0e19e54eac477270a7b59
0514463b5d215bf6e91ed3a61d6189e34e89e5921249add1e0f9bbd2e9b41294
GET /images2/nice_bk4_thumb.jpg HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/altostima?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=kepo6ecug62k16e09he9momal2; land_URL=1664147659%3B%2Fnames%2Faltostima%3Fsource%3Dext; land_referrer=1664147659%3B; bb_recent=355890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 23:14:19 GMT
content-type: image/jpeg
content-length: 6091
cf-bgj: imgq:100,h2pri
cf-polished: origSize=16406
etag: "5ee1f391-4016"
last-modified: Thu, 11 Jun 2020 09:04:17 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 1319
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7507749a29d4b51e-OSL
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.woff2
142.250.74.163200 OK 11 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 11072, version 1.0\012- data
Hash e7df3d0942815909add8f9d0c40d00d9
cf5032eea3399a58870e8a05e629b006a8c7c3c7
bce2f309470952b7affa62ff4d91b454334c68cefa541429b502904d20696875
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.brandbucket.com
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11072
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:34:03 GMT
expires: Thu, 21 Sep 2023 19:34:03 GMT
cache-control: public, max-age=31536000
age: 358816
last-modified: Wed, 11 May 2022 19:24:53 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.ampproject.org/v0/amp-bind-0.1.js
216.58.211.1200 OK 16 kB URL HTTP/2 cdn.ampproject.org/v0/amp-bind-0.1.js
IP 216.58.211.1:0
File type Unicode text, UTF-8 text, with very long lines (51047)
Hash 981b353b3a77b02dba8dd4f7008f4fdf
39e3c2d9c0aa81ccfd69e6a5090dcbee50657a6c
6cbb5d4f8a43c0509d1516e3f170fed700f45308c5fba8ec3133de6260817e3c
GET /v0/amp-bind-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 16282
date: Sun, 25 Sep 2022 23:14:19 GMT
expires: Sun, 25 Sep 2022 23:14:19 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "2b9950942585d926"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d1256b6452c58ffb05e1db44d9d37a5f
04538f69abefe1019a0c4c6cc1fd3ffe5a5b2cfd
4bf592b24e41cf58e4ea973378a8559c4011a25ccdc51cc7a31457cc6561d22b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 23:14:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.brandbucket.com/images2/nice_bk5_thumb.jpg
104.22.7.216200 OK 5.6 kB URL HTTP/2 www.brandbucket.com/images2/nice_bk5_thumb.jpg
IP 104.22.7.216:0
File type JPEG image data, progressive, precision 8, 150x96, components 3\012- data
Hash bca3c9b14d1a37b805e41f8cbe61be7e
5a3849459df95c9ac261840c9efe5cd265cd755a
f730c29ffb9ba16b6e0bcb09ded50ef3076f7125fc133103ed7d26843f3e57b0
GET /images2/nice_bk5_thumb.jpg HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/altostima?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=kepo6ecug62k16e09he9momal2; land_URL=1664147659%3B%2Fnames%2Faltostima%3Fsource%3Dext; land_referrer=1664147659%3B; bb_recent=355890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 23:14:19 GMT
content-type: image/jpeg
content-length: 5617
cf-bgj: imgq:100,h2pri
cf-polished: origSize=16068
etag: "5ee1f391-3ec4"
last-modified: Thu, 11 Jun 2020 09:04:17 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 1319
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7507749a39deb51e-OSL
X-Firefox-Spdy: h2
cdn.ampproject.org/v0/amp-mustache-0.2.js
216.58.211.1200 OK 14 kB URL HTTP/2 cdn.ampproject.org/v0/amp-mustache-0.2.js
IP 216.58.211.1:0
File type Unicode text, UTF-8 text, with very long lines (41897)
Hash bbc33e7862f455377117a293ccac9ee6
73abbc46581565de558c0944a4b5580346345c83
1834e16126c5951ddb348c9c857048be7540b096a39af3e8b60c6b84ed307ac3
GET /v0/amp-mustache-0.2.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 14322
date: Sun, 25 Sep 2022 23:14:19 GMT
expires: Sun, 25 Sep 2022 23:14:19 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "a9479449da452353"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.brandbucket.com/images7/icon_plus.png
104.22.7.216200 OK 604 B URL HTTP/2 www.brandbucket.com/images7/icon_plus.png
IP 104.22.7.216:0
File type PNG image data, 64 x 64, 8-bit gray+alpha, non-interlaced\012- data
Hash 94865622c5c9f42d952bbea159d15dd6
217ad71873550f450b555bdc83805a1969a2a4b7
70a3df33b31f08827510b14236a8c6320ea413b2b4210b4232416c20bcc751cc
GET /images7/icon_plus.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/altostima?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=kepo6ecug62k16e09he9momal2; land_URL=1664147659%3B%2Fnames%2Faltostima%3Fsource%3Dext; land_referrer=1664147659%3B; bb_recent=355890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 23:14:19 GMT
content-type: image/png
content-length: 604
cf-bgj: imgq:100,h2pri
cf-polished: origSize=743
etag: "5ede24b6-2e7"
last-modified: Mon, 08 Jun 2020 11:44:54 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 1319
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7507749a39e0b51e-OSL
X-Firefox-Spdy: h2
cdn.ampproject.org/v0/amp-sidebar-0.1.js
216.58.211.1200 OK 9.7 kB URL HTTP/2 cdn.ampproject.org/v0/amp-sidebar-0.1.js
IP 216.58.211.1:0
File type ASCII text, with very long lines (31286)
Hash 419f11582b08c63a8b4dcfd54a5d1027
46530587575dcf427856e5422c15af4ff228be61
e0caca92695b2040af9cc9c22f9dd2a3971efbeb30f5a9a9b4b44d441fe74549
GET /v0/amp-sidebar-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 9655
date: Sun, 25 Sep 2022 23:14:19 GMT
expires: Sun, 25 Sep 2022 23:14:19 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "8ff35979583bd4ad"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.ampproject.org/v0/amp-form-0.1.js
216.58.211.1200 OK 15 kB URL HTTP/2 cdn.ampproject.org/v0/amp-form-0.1.js
IP 216.58.211.1:0
File type Unicode text, UTF-8 text, with very long lines (50567)
Hash e00d7407d7ff1b889ae0f933f2b38883
f080be3372c9912431eb2bfea0a316a976000268
d54e35ef39226e12244e5065722a80969c8fec6de58e0c8a81df1653593f0e29
GET /v0/amp-form-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 14971
date: Sun, 25 Sep 2022 23:14:19 GMT
expires: Sun, 25 Sep 2022 23:14:19 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "7d7dfd526b3765ba"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9701
Expires: Mon, 26 Sep 2022 01:56:01 GMT
Date: Sun, 25 Sep 2022 23:14:20 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9701
Expires: Mon, 26 Sep 2022 01:56:01 GMT
Date: Sun, 25 Sep 2022 23:14:20 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9701
Expires: Mon, 26 Sep 2022 01:56:01 GMT
Date: Sun, 25 Sep 2022 23:14:20 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9701
Expires: Mon, 26 Sep 2022 01:56:01 GMT
Date: Sun, 25 Sep 2022 23:14:20 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18a9d6ea-6c08-48b5-b74a-f5bf5a018b80.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18a9d6ea-6c08-48b5-b74a-f5bf5a018b80.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c1ce3e1066be88e2c4eae317c55136f5
9f4dd2376e00073510cbd4e36d10a5a3f1746e35
a7ae3c3b24666cb35db7a95bd98840e96e306d6e2fdbb05c68c98ff7deaa5459
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18a9d6ea-6c08-48b5-b74a-f5bf5a018b80.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6797
x-amzn-requestid: 2caf2fb8-650f-4f19-806b-3252a0ba360a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSlhG0FIAMFgSQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330caef-0b5beafd57d22f245df61815;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:41:04 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: nhtcKQJlI8biPpgjMg2s6wgZNkarsBB2Rnxj69_5Y361Pw9FR4frrg==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:11:07 GMT
etag: "9f4dd2376e00073510cbd4e36d10a5a3f1746e35"
content-type: image/jpeg
age: 3793
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4e46522-27ca-4a21-a138-a7bdaf6c55b5.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4e46522-27ca-4a21-a138-a7bdaf6c55b5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3a75be68e82e6a0ba74932fbe74c7b30
36310320605833289e78cd248c45915363a0a0c3
56d709b77802037254b7922e3f85d1b1652b70dfc4b6c65b03e4149d3b1f22ca
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4e46522-27ca-4a21-a138-a7bdaf6c55b5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6443
x-amzn-requestid: b6f3be01-6086-4fc1-8bec-c4caa1fe806c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSKMG04IAMFRxg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330ca41-5452d1805d3f4d71303142c9;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:38:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: tx-lL61dT3iakJd8VZw31hzMklubUDBQxE6LBhxsJUqyMM0bqCk73g==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:28:23 GMT
age: 2757
etag: "36310320605833289e78cd248c45915363a0a0c3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa675e34b-7ee1-4318-a6a3-b49bce6a4ca4.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa675e34b-7ee1-4318-a6a3-b49bce6a4ca4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b6e43e36ae283d6ec12fb5c9c692fa83
a3b3a4396da5beac2430e8facdb4d4b799621c9d
49ed7dccf0fe8abb7b0bfdc34ff89b30ef719288571bb1d89d29a1cb8857310e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa675e34b-7ee1-4318-a6a3-b49bce6a4ca4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10944
x-amzn-requestid: 2711886c-e022-4a77-862e-9d7bbd0db02e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSvxHsSIAMF8Pg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cb31-6b464e2e489825b51447d74d;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:42:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: N-nUwIxG9TDPRBSt8-RuITSg0nVZIMMidfKme75OXsqDXJ-vcXA41Q==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:25:00 GMT
age: 2960
etag: "a3b3a4396da5beac2430e8facdb4d4b799621c9d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bd5ecd8-fafe-452d-ae17-9df7d4cb5682.webp
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bd5ecd8-fafe-452d-ae17-9df7d4cb5682.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 720fc80bd0ff9b71f20c8e0c13e1084e
6ff5d7ce0608a8c1b1f4c731a94295e7a56dfe50
e84bcabd01425354050fe8ba5f4b29a97f05e6f5f15d26d0706c174136de30e6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bd5ecd8-fafe-452d-ae17-9df7d4cb5682.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8931
x-amzn-requestid: 9255ee80-ae19-4b47-882b-01e663e857ed
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCUG-EmZoAMFyWw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cd5f-70cc0bc87ed2480879ba081a;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:51:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Md06h9jRAN491M1gOjvAXN4Zp2msjqH-dYNVxyH6xJ2G8pf50tyHeQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:32:56 GMT
age: 2484
etag: "6ff5d7ce0608a8c1b1f4c731a94295e7a56dfe50"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 3-257, spot sensor temperature 0.000000, unit celsius, color scheme 0, show scale bar, calibration: offset 0.000000, slope 241253891388563521536.000000\012- data
Hash b3a72e81317074689a71dac7059e4b6a
b6d56333d7f1ea7ddc8838d84de498ff913c5464
e665a8821b5e7b2e78787647a08d629bf70cbf4cbfee2057c8601cf0565154a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12826
x-amzn-requestid: f075cf62-acfc-4bc1-be14-7c3dafb7aaed
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YfVRNFP-oAMFgrA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322cf3a-184b678042d64ac9266b1128;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 07:07:38 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: rN_8rm10Pxb0AUKW6ECfNulcYxBaS7FgGD15gT14dX-FlsGJfqahxA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 21:37:35 GMT
age: 5805
etag: "b6d56333d7f1ea7ddc8838d84de498ff913c5464"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1dfa0c2-ab90-410b-b036-ba20f7cfe781.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1dfa0c2-ab90-410b-b036-ba20f7cfe781.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5ae396e310d1a7b5e9c4f0bcff5f0f26
1f1ab5678eb454de32e049cd3fe7e7fd0cd7447f
e6b75239519cf7d49594cd2c4ee5c9cf9d8c8c5cad2b9886465e877a0b3a0db4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1dfa0c2-ab90-410b-b036-ba20f7cfe781.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6447
x-amzn-requestid: af8b5b52-ee1a-4227-b30b-c65dbb7d6bb4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSJKHrMIAMFuJA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330ca3a-08bf4d8a18ccc6b277eacecf;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:38:02 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: dU1BSSjuJbF7wUjycpWIsRPw6Sr-NcLmiT5Ka6RSerkx4fhlPWrgGw==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:01:31 GMT
age: 4369
etag: "1f1ab5678eb454de32e049cd3fe7e7fd0cd7447f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.brandbucket.com/images6/icon_bc_search_bigblk.png
104.22.7.216200 OK 2.3 kB URL HTTP/2 www.brandbucket.com/images6/icon_bc_search_bigblk.png
IP 104.22.7.216:0
File type PNG image data, 128 x 128, 8-bit gray+alpha, non-interlaced\012- data
Hash 5df8840f95ca2b57cb4c1a04a450bd18
7d97554537c3d55bcd2dc2525ebf8b6460b3aedf
30c2e6ee83ea286bef75e58172ea15e543b798ffa26154024f1a2a95d89971b9
GET /images6/icon_bc_search_bigblk.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/altostima?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=kepo6ecug62k16e09he9momal2; land_URL=1664147659%3B%2Fnames%2Faltostima%3Fsource%3Dext; land_referrer=1664147659%3B; bb_recent=355890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 23:14:20 GMT
content-type: image/png
content-length: 2332
cf-bgj: imgq:100,h2pri
cf-polished: origSize=2940
etag: "5a96c759-b7c"
last-modified: Wed, 28 Feb 2018 15:14:33 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 1319
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7507749d8c39b51e-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images7/head_logo2.png
104.22.7.216200 OK 5.9 kB URL HTTP/2 www.brandbucket.com/images7/head_logo2.png
IP 104.22.7.216:0
File type PNG image data, 580 x 90, 8-bit gray+alpha, non-interlaced\012- data
Hash fb4bff13a9b6f0b181ca99f55e1851bf
2969bbee6ce6f471d131c52ea806070eeb2f75be
372a7875b90613c3706d7bac0792679818354119b0d656e5ef16875ba701a585
GET /images7/head_logo2.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/altostima?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=kepo6ecug62k16e09he9momal2; land_URL=1664147659%3B%2Fnames%2Faltostima%3Fsource%3Dext; land_referrer=1664147659%3B; bb_recent=355890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 23:14:20 GMT
content-type: image/png
content-length: 5907
cf-bgj: imgq:100,h2pri
cf-polished: origSize=10386
etag: "5ee085a5-2892"
last-modified: Wed, 10 Jun 2020 07:03:01 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 1319
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7507749d8c3db51e-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images6/icon_bc_refine_blk.png
104.22.7.216200 OK 1.1 kB URL HTTP/2 www.brandbucket.com/images6/icon_bc_refine_blk.png
IP 104.22.7.216:0
File type PNG image data, 64 x 64, 8-bit gray+alpha, non-interlaced\012- data
Hash 21fed69f80de4815a845b554523f1f0b
1f8f3562f2581619b0b12be06996eb7d2efef926
eb56a89bd14ada5dc2498e27f8b074a3a889c47c07f06a73c04d212fb9f48016
GET /images6/icon_bc_refine_blk.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/altostima?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=kepo6ecug62k16e09he9momal2; land_URL=1664147659%3B%2Fnames%2Faltostima%3Fsource%3Dext; land_referrer=1664147659%3B; bb_recent=355890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 23:14:20 GMT
content-type: image/png
content-length: 1081
cf-bgj: imgq:100,h2pri
cf-polished: origSize=2074
etag: "5fe9acd4-81a"
last-modified: Mon, 28 Dec 2020 10:00:52 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 1319
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7507749d8c3cb51e-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images6/icon_cart_blk.png
104.22.7.216200 OK 594 B URL HTTP/2 www.brandbucket.com/images6/icon_cart_blk.png
IP 104.22.7.216:0
File type PNG image data, 64 x 64, 8-bit gray+alpha, non-interlaced\012- data
Hash 0f4bfd7ce7e3cd0031e75eafb5ae5ced
975cf52ea1a8c5a75b1bedbead36161629aba05f
2e924b33b08af08800be44199679ee7f7e46012070bcd2dbf5b916bb99e684dc
GET /images6/icon_cart_blk.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/altostima?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=kepo6ecug62k16e09he9momal2; land_URL=1664147659%3B%2Fnames%2Faltostima%3Fsource%3Dext; land_referrer=1664147659%3B; bb_recent=355890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 23:14:20 GMT
content-type: image/png
content-length: 594
cf-bgj: imgq:100,h2pri
cf-polished: origSize=693
etag: "5a12debd-2b5"
last-modified: Mon, 20 Nov 2017 13:55:09 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 1319
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7507749d8c3fb51e-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images6/icon_heart.png
104.22.7.216200 OK 1.1 kB URL HTTP/2 www.brandbucket.com/images6/icon_heart.png
IP 104.22.7.216:0
File type PNG image data, 64 x 64, 8-bit gray+alpha, non-interlaced\012- data
Hash 88e4464632078c7b6cbfbccffd95878a
68c907205dfcfaf600fb84c28c1363f029dc8e78
3051e31080b34dacf5378df68561065fb516b05594c5695b95905e32e8a551af
GET /images6/icon_heart.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/altostima?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=kepo6ecug62k16e09he9momal2; land_URL=1664147659%3B%2Fnames%2Faltostima%3Fsource%3Dext; land_referrer=1664147659%3B; bb_recent=355890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 23:14:20 GMT
content-type: image/png
content-length: 1095
cf-bgj: imgq:100,h2pri
cf-polished: origSize=1405
etag: "5a12dec0-57d"
last-modified: Mon, 20 Nov 2017 13:55:12 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 1319
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7507749d9c42b51e-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images7/icon_chat.png
104.22.7.216200 OK 374 B URL HTTP/2 www.brandbucket.com/images7/icon_chat.png
IP 104.22.7.216:0
File type PNG image data, 56 x 56, 8-bit gray+alpha, non-interlaced\012- data
Hash 8bd1e7f1a5f9e05fd61373b746e73baa
d8483c30258d4e33a96755dec31b65e892c5c3a8
867f0673ce919e3987de03d8ccb8d26f50721b64624e4ba2fdbd6772c1b5e9a8
GET /images7/icon_chat.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/altostima?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=kepo6ecug62k16e09he9momal2; land_URL=1664147659%3B%2Fnames%2Faltostima%3Fsource%3Dext; land_referrer=1664147659%3B; bb_recent=355890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 23:14:20 GMT
content-type: image/png
content-length: 374
cf-bgj: imgq:100,h2pri
cf-polished: origSize=691
etag: "5ebbcbd0-2b3"
last-modified: Wed, 13 May 2020 10:28:32 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 1319
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7507749dac5ab51e-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images7/icon_percent.png
104.22.7.216200 OK 771 B URL HTTP/2 www.brandbucket.com/images7/icon_percent.png
IP 104.22.7.216:0
File type PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced\012- data
Hash 20b4980f9d03b45ec7ec243f3a898d97
b09250a824c84a5f90862ccb93d155128d30d753
25e04c953669e488a0f727d11b858f19a67c2165d8232586fff448e16290d446
GET /images7/icon_percent.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/altostima?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=kepo6ecug62k16e09he9momal2; land_URL=1664147659%3B%2Fnames%2Faltostima%3Fsource%3Dext; land_referrer=1664147659%3B; bb_recent=355890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 23:14:20 GMT
content-type: image/png
content-length: 771
cf-bgj: imgq:100,h2pri
cf-polished: origSize=875
etag: "6023e899-36b"
last-modified: Wed, 10 Feb 2021 14:07:21 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 1319
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7507749dbc5fb51e-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images7/icon_cart.png
104.22.7.216200 OK 488 B URL HTTP/2 www.brandbucket.com/images7/icon_cart.png
IP 104.22.7.216:0
File type PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced\012- data
Hash ecdbbc8258f81f5cc36944941eb381cd
6a7970f95e21da0a54211e49760bf2ac5738915a
e7501a24075314198d656bed11723ea4beceddd08864f53a31a6eecabc000946
GET /images7/icon_cart.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/altostima?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=kepo6ecug62k16e09he9momal2; land_URL=1664147659%3B%2Fnames%2Faltostima%3Fsource%3Dext; land_referrer=1664147659%3B; bb_recent=355890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 23:14:20 GMT
content-type: image/png
content-length: 488
cf-bgj: imgq:100,h2pri
cf-polished: origSize=851
etag: "5ebbcbcf-353"
last-modified: Wed, 13 May 2020 10:28:31 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 1319
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7507749dbc63b51e-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images7/icon_heart.png
104.22.7.216200 OK 1.1 kB URL HTTP/2 www.brandbucket.com/images7/icon_heart.png
IP 104.22.7.216:0
File type PNG image data, 64 x 56, 8-bit gray+alpha, non-interlaced\012- data
Hash 8c10244caab110d2455d3952b47304af
ea695914fb21e4227c6ed482e84d70c8d145009d
626e178145fb4293ef5ff59a67451883d3c35d6048fab45c1e2f365f8b3a134f
GET /images7/icon_heart.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/altostima?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=kepo6ecug62k16e09he9momal2; land_URL=1664147659%3B%2Fnames%2Faltostima%3Fsource%3Dext; land_referrer=1664147659%3B; bb_recent=355890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 23:14:20 GMT
content-type: image/png
content-length: 1069
cf-bgj: imgq:100,h2pri
cf-polished: origSize=1597
etag: "5ebbcbd2-63d"
last-modified: Wed, 13 May 2020 10:28:34 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 1319
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7507749dcc64b51e-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images2/nice_bk1_.jpg
104.22.7.216200 OK 184 kB URL HTTP/2 www.brandbucket.com/images2/nice_bk1_.jpg
IP 104.22.7.216:0
File type JPEG image data, progressive, precision 8, 1600x1024, components 3\012- data
Size 184 kB (184078 bytes)
Hash a16d81686e7139d223f7abbe22f781e8
bc8d96b0698f2cb7fa9202e77d184eeb861ae9f7
3d4b4be3f8b7b79f2b5ba988c6e4ca6f993db5b87bb7a157f91c0d46276f9cff
GET /images2/nice_bk1_.jpg HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/altostima?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=kepo6ecug62k16e09he9momal2; land_URL=1664147659%3B%2Fnames%2Faltostima%3Fsource%3Dext; land_referrer=1664147659%3B; bb_recent=355890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 23:14:20 GMT
content-type: image/jpeg
content-length: 184078
cf-bgj: imgq:100,h2pri
cf-polished: origSize=202326
etag: "5fdbcc77-31656"
last-modified: Thu, 17 Dec 2020 21:24:07 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 1319
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7507749dcc66b51e-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images6/icon_gift.png
104.22.7.216200 OK 2.0 kB URL HTTP/2 www.brandbucket.com/images6/icon_gift.png
IP 104.22.7.216:0
File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash aa034845cd6345549655fd9b8d156ba4
832f87b3f83f315dcd0a86943c63d41a283635a0
56ee437c47ad090ba5204c9583adbbbf933b3f11a9dd64e5aa856bb01ff30b6e
GET /images6/icon_gift.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/altostima?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=kepo6ecug62k16e09he9momal2; land_URL=1664147659%3B%2Fnames%2Faltostima%3Fsource%3Dext; land_referrer=1664147659%3B; bb_recent=355890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 23:14:20 GMT
content-type: image/png
content-length: 1956
cf-bgj: imgq:100,h2pri
cf-polished: origSize=3038
etag: "5a12debf-bde"
last-modified: Mon, 20 Nov 2017 13:55:11 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 1319
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7507749ddc75b51e-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images6/icon_delivery.png
104.22.7.216200 OK 2.0 kB URL HTTP/2 www.brandbucket.com/images6/icon_delivery.png
IP 104.22.7.216:0
File type PNG image data, 64 x 64, 8-bit gray+alpha, non-interlaced\012- data
Hash a3ecd77d0fb534a6077b4d9640e225f6
622ab1f4b324e7e9a5afe55d75d7033a59fcd4d3
39ba61ecabf031e71e239e634d36bb31583fdd9b2d6c69f1e12a81498b860006
GET /images6/icon_delivery.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/altostima?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=kepo6ecug62k16e09he9momal2; land_URL=1664147659%3B%2Fnames%2Faltostima%3Fsource%3Dext; land_referrer=1664147659%3B; bb_recent=355890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 23:14:20 GMT
content-type: image/png
content-length: 1955
cf-bgj: imgq:100,h2pri
cf-polished: origSize=2491
etag: "5a12debe-9bb"
last-modified: Mon, 20 Nov 2017 13:55:10 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 1319
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7507749ddc79b51e-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images6/icon_bills.png
104.22.7.216200 OK 1.5 kB URL HTTP/2 www.brandbucket.com/images6/icon_bills.png
IP 104.22.7.216:0
File type PNG image data, 64 x 64, 8-bit gray+alpha, non-interlaced\012- data
Hash 63b9477a8d4f573114ef3a8385e421c1
af618a395be518ed856135aae176cafa600c3766
1791cdebe64eb084b289ade2587c236382055b8a45b9f610ddd0b0a0a5b56d46
GET /images6/icon_bills.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/altostima?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=kepo6ecug62k16e09he9momal2; land_URL=1664147659%3B%2Fnames%2Faltostima%3Fsource%3Dext; land_referrer=1664147659%3B; bb_recent=355890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 23:14:20 GMT
content-type: image/png
content-length: 1464
cf-bgj: imgq:100,h2pri
cf-polished: origSize=1809
etag: "5a12debb-711"
last-modified: Mon, 20 Nov 2017 13:55:07 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 1319
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7507749ddc78b51e-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images6/icon_paint.png
104.22.7.216200 OK 2.0 kB URL HTTP/2 www.brandbucket.com/images6/icon_paint.png
IP 104.22.7.216:0
File type PNG image data, 64 x 64, 8-bit gray+alpha, non-interlaced\012- data
Hash 738d11479c8f00bbf6becd4f1628484e
92a9972dc97422c334792e7ca593f1aa00d124bf
4f96956134964753a940fcafd693e72f9d153e7e0f02c4c9b29944ad40dfa3d4
GET /images6/icon_paint.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/altostima?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=kepo6ecug62k16e09he9momal2; land_URL=1664147659%3B%2Fnames%2Faltostima%3Fsource%3Dext; land_referrer=1664147659%3B; bb_recent=355890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 23:14:20 GMT
content-type: image/png
content-length: 1961
cf-bgj: imgq:100,h2pri
cf-polished: origSize=2539
etag: "5a12dec1-9eb"
last-modified: Mon, 20 Nov 2017 13:55:13 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 1319
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7507749ddc76b51e-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/names/altostima?source=ext
104.22.7.216200 OK 36 kB URL HTTP/2 www.brandbucket.com/names/altostima?source=ext
IP 104.22.7.216:0
Hash a6cee1e4dff6efebd70f29d3f3c3bcde
744f441d25a8dad2e56e8c40f380f33eb6420959
e55a0a23292aa0d0a3a5f512d17639728132d2513acf0328c688e19cbc949022
GET /names/altostima?source=ext HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Sun, 25 Sep 2022 23:14:19 GMT
content-type: text/html
vary: Accept-Encoding
set-cookie: PHPSESSID=kepo6ecug62k16e09he9momal2; path=/
land_URL=1664147659%3B%2Fnames%2Faltostima%3Fsource%3Dext; expires=Sat, 24-Dec-2022 23:14:19 GMT; Max-Age=7776000; path=/
land_referrer=1664147659%3B; expires=Sat, 24-Dec-2022 23:14:19 GMT; Max-Age=7776000; path=/
bb_recent=355890; expires=Sat, 15-Oct-2022 23:14:19 GMT; Max-Age=1728000; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
access-control-allow-origin: https://js.stripe.com/, https://get.brandbucket.com/, //staging.brandbucket.com/
brandbucket-domain: altostima.com #355890
x-frame-options: DENY
access-control-allow-credentials: true
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 750774920ca7b51e-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
www.brandbucket.com/sites/default/files/logo_uploads/358266/large_altostima.png
104.22.7.216200 OK 4.4 kB URL HTTP/2 www.brandbucket.com/sites/default/files/logo_uploads/358266/large_altostima.png
IP 104.22.7.216:0
File type PNG image data, 360 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash 34ec8d1e89d6478b7d65196021849932
22ec38895b3d2f7bc28e6ed9f50bbb6b997769ce
908c42808200f8beceaa572e4f5fcfd29deaeb3a903fc4c2b3a5a96481366af2
GET /sites/default/files/logo_uploads/358266/large_altostima.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/altostima?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=kepo6ecug62k16e09he9momal2; land_URL=1664147659%3B%2Fnames%2Faltostima%3Fsource%3Dext; land_referrer=1664147659%3B; bb_recent=355890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 23:14:20 GMT
content-type: image/png
content-length: 4371
last-modified: Wed, 02 Jun 2021 07:50:02 GMT
etag: "60b7382a-1113"
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7507749a19c6b51e-OSL
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8b8a6f6a2b7b78def10c8e089c15170d
c364cffb3ea6826fdc0a4b210425706272bcb65a
074a4dad5c5fa3623c4c1fce1d6ba8e40658773a73fdeb069b905d039cea4172
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "074A4DAD5C5FA3623C4C1FCE1D6BA8E40658773A73FDEB069B905D039CEA4172"
Last-Modified: Sat, 24 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1913
Expires: Sun, 25 Sep 2022 23:46:13 GMT
Date: Sun, 25 Sep 2022 23:14:20 GMT
Connection: keep-alive
cdn.ampproject.org/v0.js
216.58.211.1200 OK 43 B IP 216.58.211.1:0
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /v0.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 72580
date: Sun, 25 Sep 2022 23:14:19 GMT
expires: Sun, 25 Sep 2022 23:14:19 GMT
cache-control: private, max-age=3000, stale-while-revalidate=1206600
etag: "262efd4b6b76c562"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.brandbucket.com/images7/menu_corner.png
104.22.7.216200 OK 326 B URL HTTP/2 www.brandbucket.com/images7/menu_corner.png
IP 104.22.7.216:0
File type PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced\012- data
Hash 46030a6b4d338aa9be62f50203c4ff5b
c88766c7af725f4519b8d26b1001b549bef17a60
a2207a26b24c6f4d985ad4f6da0ee829f6b7c29880ee0f025bdd7f2406133e59
GET /images7/menu_corner.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/altostima?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=kepo6ecug62k16e09he9momal2; land_URL=1664147659%3B%2Fnames%2Faltostima%3Fsource%3Dext; land_referrer=1664147659%3B; bb_recent=355890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 23:14:21 GMT
content-type: image/png
content-length: 326
cf-bgj: imgq:100,h2pri
cf-polished: origSize=415
etag: "5fdf0f81-19f"
last-modified: Sun, 20 Dec 2020 08:46:57 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7507749d8c34b51e-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/sites/default/files/logo_uploads/149129/large_kodavo.png
104.22.7.216200 OK 3.9 kB URL HTTP/2 www.brandbucket.com/sites/default/files/logo_uploads/149129/large_kodavo.png
IP 104.22.7.216:0
File type PNG image data, 360 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash 209ec83ea56f4037a77b617823b3f9f9
1095ff5a8fdf7464779679fac5aa2dc8b6f44020
ff9f98d359cfb402d8a0b964afbb550a79a16db6d44f56cfd98e491a2eb7130d
GET /sites/default/files/logo_uploads/149129/large_kodavo.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/altostima?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=kepo6ecug62k16e09he9momal2; land_URL=1664147659%3B%2Fnames%2Faltostima%3Fsource%3Dext; land_referrer=1664147659%3B; bb_recent=355890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 23:14:21 GMT
content-type: image/png
content-length: 3940
last-modified: Thu, 09 Mar 2017 00:48:23 GMT
etag: "58c0a657-f64"
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7507749dec7db51e-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/sites/default/files/logo_uploads/361452/large_deralo.png
104.22.7.216200 OK 9.4 kB URL HTTP/2 www.brandbucket.com/sites/default/files/logo_uploads/361452/large_deralo.png
IP 104.22.7.216:0
File type PNG image data, 360 x 200, 8-bit/color RGBA, interlaced\012- data
Hash 2c9535340c545c227be62c8a9cfe7e3d
0fe572ee7053b36daabf7e28dfad866c3b992264
8dc401eedaab15086872a5ae6dc9eb4d1ae9df1ee826de4d90b3f4f9349c6c2d
GET /sites/default/files/logo_uploads/361452/large_deralo.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/altostima?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=kepo6ecug62k16e09he9momal2; land_URL=1664147659%3B%2Fnames%2Faltostima%3Fsource%3Dext; land_referrer=1664147659%3B; bb_recent=355890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 23:14:21 GMT
content-type: image/png
content-length: 9380
last-modified: Sun, 13 Jun 2021 20:42:02 GMT
etag: "60c66d9a-24a4"
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7507749dec84b51e-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/sites/default/files/logo_uploads/330041/large_tagraphy.png
104.22.7.216200 OK 2.2 kB URL HTTP/2 www.brandbucket.com/sites/default/files/logo_uploads/330041/large_tagraphy.png
IP 104.22.7.216:0
File type PNG image data, 360 x 200, 8-bit colormap, non-interlaced\012- data
Hash 5f31d392ea127199799c7009f7aaf89d
bf4940df6f23460db4c43e70db91058aae490583
07c1fd4750546ab71b5e45212237f5438068ec56f1085ea1407ce985821181a9
GET /sites/default/files/logo_uploads/330041/large_tagraphy.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/altostima?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=kepo6ecug62k16e09he9momal2; land_URL=1664147659%3B%2Fnames%2Faltostima%3Fsource%3Dext; land_referrer=1664147659%3B; bb_recent=355890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 23:14:21 GMT
content-type: image/png
content-length: 2170
cf-bgj: imgq:100,h2pri
cf-polished: origSize=3995
etag: "6022f949-f9b"
last-modified: Tue, 09 Feb 2021 21:06:17 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7507749dec8ab51e-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/sites/default/files/logo_uploads/379506/large_mezora_0.png
104.22.7.216200 OK 4.9 kB URL HTTP/2 www.brandbucket.com/sites/default/files/logo_uploads/379506/large_mezora_0.png
IP 104.22.7.216:0
File type PNG image data, 360 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash 4233922d7e4a17d23f00b29e3f8e23f5
ac3a22ade881e6efb858691125fc69c269787920
2db80d0f8436c7dffd78dfdcd149b92331ac7728b872e8ac0a44e68ec2de8017
GET /sites/default/files/logo_uploads/379506/large_mezora_0.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/altostima?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=kepo6ecug62k16e09he9momal2; land_URL=1664147659%3B%2Fnames%2Faltostima%3Fsource%3Dext; land_referrer=1664147659%3B; bb_recent=355890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 23:14:21 GMT
content-type: image/png
content-length: 4912
last-modified: Tue, 05 Oct 2021 23:56:02 GMT
etag: "615ce612-1330"
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7507749dec83b51e-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/sites/default/files/logo_uploads/391619/large_vecier.png
104.22.7.216200 OK 5.3 kB URL HTTP/2 www.brandbucket.com/sites/default/files/logo_uploads/391619/large_vecier.png
IP 104.22.7.216:0
File type PNG image data, 360 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash 0b9e68fe42c576e3cbc7a1a9a436eb99
a757a52d0fa9ed95a04cdaebb2e239a0c70303a9
5521b4b3e5b73875ab9b6edc11fa6f6a8318a308c6e82132091531b9aa9d9fa2
GET /sites/default/files/logo_uploads/391619/large_vecier.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/altostima?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=kepo6ecug62k16e09he9momal2; land_URL=1664147659%3B%2Fnames%2Faltostima%3Fsource%3Dext; land_referrer=1664147659%3B; bb_recent=355890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 23:14:21 GMT
content-type: image/png
content-length: 5267
cf-bgj: imgq:100,h2pri
cf-polished: origSize=6672
etag: "618f5247-1a10"
last-modified: Sat, 13 Nov 2021 05:51:03 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7507749dec88b51e-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/images2/nice_bk2.jpg
104.22.7.216200 OK 153 kB URL HTTP/2 www.brandbucket.com/images2/nice_bk2.jpg
IP 104.22.7.216:0
File type JPEG image data, progressive, precision 8, 1600x1024, components 3\012- data
Size 153 kB (153149 bytes)
Hash 2b609e5c7b90f4aa31c19ad4dbb9888b
95d70cc4b3896f11079f94cf2851235551b17281
6730326e166c0ba1f3b8d128d62da81d7578c6beb946139e64d5833fa014de0e
GET /images2/nice_bk2.jpg HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/altostima?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=kepo6ecug62k16e09he9momal2; land_URL=1664147659%3B%2Fnames%2Faltostima%3Fsource%3Dext; land_referrer=1664147659%3B; bb_recent=355890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 23:14:21 GMT
content-type: image/jpeg
content-length: 153149
cf-bgj: imgq:100,h2pri
cf-polished: origSize=158414
etag: "54d4c43d-26ace"
last-modified: Fri, 06 Feb 2015 13:40:13 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: REVALIDATED
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7507749dcc6bb51e-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/sites/default/files/logo_uploads/362132/large_voxpura.png
104.22.7.216200 OK 4.3 kB URL HTTP/2 www.brandbucket.com/sites/default/files/logo_uploads/362132/large_voxpura.png
IP 104.22.7.216:0
File type PNG image data, 360 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash ca95120c8c33fcb75cffc6ae4413fb5a
b4b32c5df26acbd78b79239b99bcb4bf15afb886
494747732e4e78137f5994fb843820d20205672eaad5f88b78a974a8ce61a1bf
GET /sites/default/files/logo_uploads/362132/large_voxpura.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/altostima?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=kepo6ecug62k16e09he9momal2; land_URL=1664147659%3B%2Fnames%2Faltostima%3Fsource%3Dext; land_referrer=1664147659%3B; bb_recent=355890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 23:14:21 GMT
content-type: image/png
content-length: 4347
last-modified: Wed, 16 Jun 2021 16:30:44 GMT
etag: "60ca2734-10fb"
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7507749dec8bb51e-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/sites/default/files/logo_uploads/414031/large_elvoria.png
104.22.7.216200 OK 5.0 kB URL HTTP/2 www.brandbucket.com/sites/default/files/logo_uploads/414031/large_elvoria.png
IP 104.22.7.216:0
File type PNG image data, 360 x 200, 8-bit/color RGBA, interlaced\012- data
Hash b3bfe953f1871165adf12090e2faf863
07d28be75db297b1b64645bb3aca73ce0c06ca81
f2c11a643f688b94d1674e09ac3c1f5a64dfe9bb94ccbf4bd2cec3cfe7d165cc
GET /sites/default/files/logo_uploads/414031/large_elvoria.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/altostima?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=kepo6ecug62k16e09he9momal2; land_URL=1664147659%3B%2Fnames%2Faltostima%3Fsource%3Dext; land_referrer=1664147659%3B; bb_recent=355890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 23:14:21 GMT
content-type: image/png
content-length: 4971
last-modified: Mon, 21 Feb 2022 11:49:02 GMT
etag: "62137c2e-136b"
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7507749dec89b51e-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/sites/default/files/logo_uploads/67074/large_piqos.png
104.22.7.216200 OK 3.0 kB URL HTTP/2 www.brandbucket.com/sites/default/files/logo_uploads/67074/large_piqos.png
IP 104.22.7.216:0
File type PNG image data, 360 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash 78ec628ba3d0f44e1f1891c229bd3595
072956ab3c773ada9196e9ad7db7aabdf9589feb
59c09769dce648e7dd8b3e1fa736c01ab3523d7c2354de511ccb386b53b74234
GET /sites/default/files/logo_uploads/67074/large_piqos.png HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/altostima?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=kepo6ecug62k16e09he9momal2; land_URL=1664147659%3B%2Fnames%2Faltostima%3Fsource%3Dext; land_referrer=1664147659%3B; bb_recent=355890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 23:14:21 GMT
content-type: image/png
content-length: 2978
last-modified: Wed, 12 Aug 2015 23:34:35 GMT
etag: "55cbd80b-ba2"
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7507749dec87b51e-OSL
X-Firefox-Spdy: h2
ct.pinterest.com/v3/?tid=2613343416073&event=PageView&noscript=1&ed[product_id]=355890
23.38.200.197200 OK 35 B URL HTTP/2 ct.pinterest.com/v3/?tid=2613343416073&event=PageView&noscript=1&ed[product_id]=355890
IP 23.38.200.197:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9b8d19f4310c758344e40bf17fbc7e85
2290ef058812d5f5e398736e2316cba8cf8093cf
37b17c5135a176a9474521af147d96dfa1fb4ca0f43f00d1400bd1885be3ab9b
GET /v3/?tid=2613343416073&event=PageView&noscript=1&ed[product_id]=355890 HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-type: image/gif
content-length: 35
access-control-allow-origin: *
x-envoy-upstream-service-time: 2
referrer-policy: origin
x-pinterest-rid: 6815531199344179
date: Sun, 25 Sep 2022 23:14:21 GMT
set-cookie: _pinterest_ct_ua="TWc9PSZ0OVA1bFJLc1lQcm10dHJHV1hKZXFsQUlDV0hab3Zmd0wxYlVzQk5uTCtnUG1IWHUwSVN3ZGlIaFY5bWtLRFZBSVRNRUdPN3l5YmV0Y0Vjblc1TCtyTHRMQXVwZS9wMTdFMVhJSHpnM3Njaz0mRTM3Y1BkZDlpOHhXdUE5OWtuTytqa1hDdE9ZPQ=="; Expires=Mon, 25 Sep 2023 23:14:21 GMT; Path=/; Domain=ct.pinterest.com; Secure; SameSite=None
akamai-grn: 0.274f2417.1664147661.16422179
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
c.statcounter.com/12544992/0/f6c8b11b/1/
104.20.228.67200 OK 49 B URL HTTP/2 c.statcounter.com/12544992/0/f6c8b11b/1/
IP 104.20.228.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 56398e76be6355ad5999b262208a17c9
a1fdee122b95748d81cee426d717c05b5174fe96
2f561b02a49376e3679acd5975e3790abdff09ecbadfa1e1858c7ba26e3ffcef
GET /12544992/0/f6c8b11b/1/ HTTP/1.1
Host: c.statcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 25 Sep 2022 23:14:21 GMT
content-type: image/gif
content-length: 49
p3p: policyref="http://www.statcounter.com/w3c/p3p.xml", CP="ADMa OUR COM NAV NID DSP NOI COR"
expires: Mon, 26 Jul 1997 05:00:00 GMT
set-cookie: is_unique=sc12544992.1664147661.0; SameSite=None; Secure; Expires=Friday, 24-Sep-2027 19:14:21 EDT; Path=/; Domain=.statcounter.com
is_visitor_unique=1664147661342748129; SameSite=None; Secure; Expires=Tuesday, 24-Sep-2024 19:14:21 EDT; Path=/; Domain=.statcounter.com
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 750774a2fc971c0a-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/amp/cookie?action=load_all&__amp_source_origin=https%3A%2F%2Fwww.brandbucket.com
104.22.7.216200 OK 552 B URL HTTP/2 www.brandbucket.com/amp/cookie?action=load_all&__amp_source_origin=https%3A%2F%2Fwww.brandbucket.com
IP 104.22.7.216:0
Hash 052b9ac28527cb00a89f3bfcc68a061c
9f7edcc2a3ab586a39c5fa3068129ecf8e600d5a
399006c4fd3a59f509c2261bb84197f5c9e8dc3e479eb8954f2b52a8cb8bb736
GET /amp/cookie?action=load_all&__amp_source_origin=https%3A%2F%2Fwww.brandbucket.com HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/names/altostima?source=ext
AMP-Same-Origin: true
Connection: keep-alive
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=kepo6ecug62k16e09he9momal2; land_URL=1664147659%3B%2Fnames%2Faltostima%3Fsource%3Dext; land_referrer=1664147659%3B; bb_recent=355890
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 23:14:20 GMT
content-type: application/json
vary: Accept-Encoding
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
access-control-allow-credentials: true
set-cookie: cart=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
fav=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
amp_run_time: 0.005592s
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
content-encoding: gzip
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7507749d5c1eb51e-OSL
X-Firefox-Spdy: h2
www.googletagmanager.com/amp.json?id=GTM-NMCQSSJ>m.url=https%3A%2F%2Fwww.brandbucket.com%2Fnames%2Faltostima%3Fsource%3Dext&__amp_source_origin=https%3A%2F%2Fwww.brandbucket.com
142.250.74.72200 OK 1.2 kB URL HTTP/2 www.googletagmanager.com/amp.json?id=GTM-NMCQSSJ>m.url=https%3A%2F%2Fwww.brandbucket.com%2Fnames%2Faltostima%3Fsource%3Dext&__amp_source_origin=https%3A%2F%2Fwww.brandbucket.com
IP 142.250.74.72:0
File type JSON data\012- , ASCII text, with very long lines (10081)
Hash 31db060496025a826075be7e4a760ba5
e796541f1e0363c80535668c06c197db9e541d3b
5cfdfc404acd1800ae0f6ea0df26ad893c4e72a80c927a3c4ad8e3ef778b6d2e
GET /amp.json?id=GTM-NMCQSSJ>m.url=https%3A%2F%2Fwww.brandbucket.com%2Fnames%2Faltostima%3Fsource%3Dext&__amp_source_origin=https%3A%2F%2Fwww.brandbucket.com HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Origin: https://www.brandbucket.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.brandbucket.com
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
amp-access-control-allow-source-origin: https://www.brandbucket.com
access-control-allow-credentials: true
content-type: application/json; charset=UTF-8
content-disposition: attachment; filename="GTM-NMCQSSJ.json"
content-encoding: br
vary: *
date: Sun, 25 Sep 2022 23:14:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 1156
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
px.ads.linkedin.com/collect/?pid=271730&fmt=gif
13.107.42.14302 Found 0 B URL HTTP/2 px.ads.linkedin.com/collect/?pid=271730&fmt=gif
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect/?pid=271730&fmt=gif HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fpid%3D271730%26fmt%3Dgif%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQKQrfoR56x4jAAAAYN27iI6DEGNh476GvKiBfM-nhRhebEnT-tHtD7JrRTt9ajaUgNPsJvO9dYA0g; Max-Age=2592000; Expires=Tue, 25 Oct 2022 23:14:21 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
AnalyticsSyncHistory=AQKN_AO-avOZ7QAAAYN27iI6bcPtAgfo2neTC0_IfQNE6oAeiFZ3s0-ekxfK21YD8kT6yoVysO5nOB3tscp7Pw; Max-Age=2592000; Expires=Tue, 25 Oct 2022 23:14:21 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&f54efb96-ff94-42b9-8892-08a15937d176"; domain=.linkedin.com; Path=/; Secure; Expires=Mon, 25-Sep-2023 23:14:21 GMT; SameSite=None
lidc="b=OGST09:s=O:r=O:a=O:p=O:g=2349:u=1:x=1:i=1664147661:t=1664234061:v=2:sig=AQH_RsT_LZh0_rHvMjA_KQvYADnQ-aAa"; Expires=Mon, 26 Sep 2022 23:14:21 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lor1
x-li-pop: afd-prod-lor1-x
x-li-proto: http/2
x-li-uuid: AAXpiJI1lLR2DdigYWs3aQ==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 52F1C9737B4E4A1CA899B169426D58FF Ref B: OSL30EDGE0519 Ref C: 2022-09-25T23:14:21Z
date: Sun, 25 Sep 2022 23:14:20 GMT
content-length: 0
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/amp?__amp_source_origin=https%3A%2F%2Fwww.brandbucket.com
142.250.74.72200 OK 262 B URL HTTP/2 www.googletagmanager.com/gtag/amp?__amp_source_origin=https%3A%2F%2Fwww.brandbucket.com
IP 142.250.74.72:0
File type JSON data\012- , ASCII text, with very long lines (497), with no line terminators
Hash e2d9a6191d8c718a71ced1d8865928aa
f6e0df35194027da97abe0a08f39411eaea2b679
0c907755f6f201383f6842b97e55c409c8b62676bc62321c291b6c4bc9677886
POST /gtag/amp?__amp_source_origin=https%3A%2F%2Fwww.brandbucket.com HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Content-Type: text/plain;charset=utf-8
Origin: https://www.brandbucket.com
Content-Length: 379
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.brandbucket.com
access-control-expose-headers: AMP-Access-Control-Allow-Source-Origin
amp-access-control-allow-source-origin: https://www.brandbucket.com
access-control-allow-credentials: true
content-type: application/json; charset=UTF-8
content-disposition: attachment; filename="amp.json"
content-encoding: br
vary: *
date: Sun, 25 Sep 2022 23:14:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 262
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 1db3e1d6bf7a5e2d0c87eab75a6e52fe
b923a169beb9248ea6a5070a04b57bc0aa44799b
f35aafc9c21937ac03d9b711aa18ef518aaaec6d0f9dbcecb42f757a0e70915c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 23:14:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash 5e3401fe4d67dbafce6a912733fbfef1
0e921538a492afbeb4e2e02fd97d556d5531de22
4a1c45b764f5e61a66675cb36f4b0082a151e842a6a963ff72c2cbf3a7ad6a6c
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 25 Sep 2022 23:14:21 GMT
Last-Modified: Sun, 25 Sep 2022 21:26:40 GMT
Server: ECS (nyb/1D18)
X-Cache: Miss from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: uVdMbj1l_r2oXF7tjPFVGBqtQZ5wAQRGZQ3oBwkeCS73YaoIgiwVHw==
Age: 6461
www.brandbucket.com/amp/ga?promo&p=355890&ext&dp=149117.379450.359431.65644.390024.413213.329095.361419.312534.256985.184813.287090.256671.298184.322723.79695.140218.229136.229538.361416&__amp_source_origin=https%3A%2F%2Fwww.brandbucket.com
104.22.7.216200 OK 1.8 kB URL HTTP/2 www.brandbucket.com/amp/ga?promo&p=355890&ext&dp=149117.379450.359431.65644.390024.413213.329095.361419.312534.256985.184813.287090.256671.298184.322723.79695.140218.229136.229538.361416&__amp_source_origin=https%3A%2F%2Fwww.brandbucket.com
IP 104.22.7.216:0
File type JSON data\012- , ASCII text, with very long lines (14734), with no line terminators
Hash 110af0b1d01dbcbe6f4d254c4cb6d467
ce12ccf2d8ac8c858d968300c9f21514f286b7d4
61694d969dadd9cc2d8c4852aac08c81cc60150460faf0bb4919dad1af0e70ae
GET /amp/ga?promo&p=355890&ext&dp=149117.379450.359431.65644.390024.413213.329095.361419.312534.256985.184813.287090.256671.298184.322723.79695.140218.229136.229538.361416&__amp_source_origin=https%3A%2F%2Fwww.brandbucket.com HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/names/altostima?source=ext
AMP-Same-Origin: true
Connection: keep-alive
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=kepo6ecug62k16e09he9momal2; land_URL=1664147659%3B%2Fnames%2Faltostima%3Fsource%3Dext; land_referrer=1664147659%3B; bb_recent=355890
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 23:14:21 GMT
content-type: application/json
vary: Accept-Encoding
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
access-control-allow-credentials: true
amp_run_time: 0.013589s
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
content-encoding: gzip
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 750774a3b875b51e-OSL
X-Firefox-Spdy: h2
d.adroll.com/ipixel/CX5WGUX2VJFQDM33UIXE3I/GJHNLHQNWFAQ7GKA4IB65N?name=c49e73cf
52.211.202.0200 OK 42 B URL HTTP/2 d.adroll.com/ipixel/CX5WGUX2VJFQDM33UIXE3I/GJHNLHQNWFAQ7GKA4IB65N?name=c49e73cf
IP 52.211.202.0:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ipixel/CX5WGUX2VJFQDM33UIXE3I/GJHNLHQNWFAQ7GKA4IB65N?name=c49e73cf HTTP/1.1
Host: d.adroll.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 25 Sep 2022 23:14:21 GMT
content-type: image/gif
content-length: 42
server: nginx/1.20.0
cache-control: no-transform,public,max-age=300,s-maxage=900
vary: Cookie
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1643b8e22daf591a123b46abe495e208
6da8722603ff19f6abd3832d5a5a874f62442141
c119fa4a15929baa59c64fa3c142fffb8f77e3ac2b0d45868157df178dddc49d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2548
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 23:14:21 GMT
Last-Modified: Sun, 25 Sep 2022 22:31:53 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
www.bizographics.com/collect/?fmt=gif&pid=271730
144.2.15.25301 Moved Permanently 0 B URL HTTP/1.1 www.bizographics.com/collect/?fmt=gif&pid=271730
IP 144.2.15.25:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect/?fmt=gif&pid=271730 HTTP/1.1
Host: www.bizographics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Server: Play
Location: https://px.ads.linkedin.com/collect?fmt=gif&pid=271730
content-length: 0
Date: Sun, 25 Sep 2022 23:14:21 GMT
Connection: keep-alive
X-Li-Fabric: prod-ltx1
X-Li-Pop: prod-ltx1-x
X-LI-Proto: http/1.1
X-LI-UUID: AAXpiJI+iPa0oF7ylwUyZw==
Set-Cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=bizographics.com; Secure
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2392:u=1:x=1:i=1664147661:t=1664234061:v=2:sig=AQGLFn1MCVlnSTQ4FCApZmBQ7vR2IOWN"; Expires=Mon, 26 Sep 2022 23:14:21 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
px.ads.linkedin.com/collect?pid=271730&fmt=gif&liSync=true
13.107.42.14200 OK 65 B URL HTTP/2 px.ads.linkedin.com/collect?pid=271730&fmt=gif&liSync=true
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 1 x 1\012- data
Hash 8b0d5b18476ae12e2476f3621d54c4a5
2ad669e9d207fbb37e84dda25766dbaeb66d792c
2d7244b6960d26ae56f048f162f02949ca7858be19d9349ec82906e56dfa3cfe
GET /collect?pid=271730&fmt=gif&liSync=true HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 65
content-type: image/gif
content-encoding: gzip
vary: Accept-Encoding
set-cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&8cf78929-21a6-4833-881a-20e2628c3e8c"; domain=.linkedin.com; Path=/; Secure; Expires=Mon, 25-Sep-2023 23:14:21 GMT; SameSite=None
lidc="b=OGST09:s=O:r=O:a=O:p=O:g=2349:u=1:x=1:i=1664147661:t=1664234061:v=2:sig=AQH_RsT_LZh0_rHvMjA_KQvYADnQ-aAa"; Expires=Mon, 26 Sep 2022 23:14:21 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lor1
x-li-pop: afd-prod-lor1-x
x-li-proto: http/2
x-li-uuid: AAXpiJI+E5dUJMJLKHUyPw==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 0632C34C2D2B49C1848C50F0F621C14B Ref B: OSL30EDGE0519 Ref C: 2022-09-25T23:14:21Z
date: Sun, 25 Sep 2022 23:14:21 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 295378998d8c9b8331ba999d05005e60
1e1836a0226bfca04b94c8cdf9bedb9b2837c220
eff125c19507fbe1b89654ec55a9f67bac7740257fbcf91cf5b0a601db51d950
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3638
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 23:14:22 GMT
Last-Modified: Sun, 25 Sep 2022 22:13:44 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 295378998d8c9b8331ba999d05005e60
1e1836a0226bfca04b94c8cdf9bedb9b2837c220
eff125c19507fbe1b89654ec55a9f67bac7740257fbcf91cf5b0a601db51d950
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3638
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 23:14:22 GMT
Last-Modified: Sun, 25 Sep 2022 22:13:44 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
www.facebook.com/tr?noscript=1&ev=PageView&id=1690817644503013
157.240.200.35200 OK 0 B URL HTTP/2 www.facebook.com/tr?noscript=1&ev=PageView&id=1690817644503013
IP 157.240.200.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /tr?noscript=1&ev=PageView&id=1690817644503013 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://www.brandbucket.com
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin: https://www.brandbucket.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
date: Sun, 25 Sep 2022 23:14:22 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr?noscript=1&ev=ViewContent&id=1690817644503013&cd[value]=2755&cd[currency]=USD&cd[content_name]=altostima.com&cd[content_type]=product&cd[content_ids]=355890
157.240.200.35200 OK 0 B URL HTTP/2 www.facebook.com/tr?noscript=1&ev=ViewContent&id=1690817644503013&cd[value]=2755&cd[currency]=USD&cd[content_name]=altostima.com&cd[content_type]=product&cd[content_ids]=355890
IP 157.240.200.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /tr?noscript=1&ev=ViewContent&id=1690817644503013&cd[value]=2755&cd[currency]=USD&cd[content_name]=altostima.com&cd[content_type]=product&cd[content_ids]=355890 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://www.brandbucket.com
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin: https://www.brandbucket.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
date: Sun, 25 Sep 2022 23:14:22 GMT
X-Firefox-Spdy: h2
px.ads.linkedin.com/collect?fmt=gif&pid=271730
13.107.42.14302 Found 0 B URL HTTP/2 px.ads.linkedin.com/collect?fmt=gif&pid=271730
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?fmt=gif&pid=271730 HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Ffmt%3Dgif%26pid%3D271730%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQICp5EmGPyx9gAAAYN27iUcfRM8zMnhTynrjBw8rpWBV-TxeoT7k2_iWjbJYxEWBNUHEHtEevk_Hw; Max-Age=2592000; Expires=Tue, 25 Oct 2022 23:14:22 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
AnalyticsSyncHistory=AQL-HxMSDQQ95wAAAYN27iUdIzpKxPxj3A-DYE0frsOv7YDEeLAkucbC99stM1yqFxHJ15dz4vj4uFHMoakKkw; Max-Age=2592000; Expires=Tue, 25 Oct 2022 23:14:22 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&b75544bc-d4d5-40fe-88e8-e186e067227b"; domain=.linkedin.com; Path=/; Secure; Expires=Mon, 25-Sep-2023 23:14:22 GMT; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2392:u=1:x=1:i=1664147662:t=1664234062:v=2:sig=AQEPezTfsE9ZUMQQHC8kt6Qu-VifYgY4"; Expires=Mon, 26 Sep 2022 23:14:22 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXpiJJA2BB75PBcf47HqQ==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: D62397A7AB8E48C0A9FC589A11CD5FC5 Ref B: OSL30EDGE0519 Ref C: 2022-09-25T23:14:22Z
date: Sun, 25 Sep 2022 23:14:21 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 295378998d8c9b8331ba999d05005e60
1e1836a0226bfca04b94c8cdf9bedb9b2837c220
eff125c19507fbe1b89654ec55a9f67bac7740257fbcf91cf5b0a601db51d950
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3638
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 23:14:22 GMT
Last-Modified: Sun, 25 Sep 2022 22:13:44 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Ffmt%3Dgif%26pid%3D271730%26liSync%3Dtrue
13.107.42.14302 Found 0 B URL HTTP/2 www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Ffmt%3Dgif%26pid%3D271730%26liSync%3Dtrue
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Ffmt%3Dgif%26pid%3D271730%26liSync%3Dtrue HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://px.ads.linkedin.com/collect?fmt=gif&pid=271730&liSync=true
set-cookie: lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None
bcookie="v=2&51d6b2b7-6ee9-4c65-8d24-a3020a4f58f2"; Domain=.linkedin.com; Expires=Mon, 25-Sep-2023 23:14:22 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&2022092523142275cedd4e-8456-4126-8a78-2c8ca5b5125eAQE2QRhnQYu707E2XystO3y4eU0XllLW"; Domain=.www.linkedin.com; Expires=Mon, 25-Sep-2023 23:14:22 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE2NjQxNDc2NjI7MjswMjGlwFy1KLTLR7WgYg1vCWRpJ+yWfuOgm1NN6YeyVlFIag==; Domain=.linkedin.com; Expires=Fri, 24 Mar 2023 23:14:22 GMT; Path=/; Secure; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2392:u=1:x=1:i=1664147662:t=1664234062:v=2:sig=AQEPezTfsE9ZUMQQHC8kt6Qu-VifYgY4"; Expires=Mon, 26 Sep 2022 23:14:22 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
content-security-policy: default-src *; connect-src 'self' https://media-src.linkedin.com/media/ www.linkedin.com s.c.lnkd.licdn.com m.c.lnkd.licdn.com wss://*.linkedin.com dms.licdn.com https://dpm.demdex.net/id lnkd.demdex.net blob: https://accounts.google.com/gsi/status https://linkedin.sc.omtrdc.net/b/ss/ www.google-analytics.com https://*.qualtrics.com static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com media.licdn.com media-exp1.licdn.com media-exp2.licdn.com media-exp3.licdn.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'report-sample' 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com www.google-analytics.com ssl.google-analytics.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com https://snap.licdn.com/li.lms-analytics/ platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; child-src blob: lnkd-communities: voyager: *; frame-ancestors 'self'
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXpiJJDZL4eKYkqV/tOnQ==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: BEF727B71ACB426DBF1F0E515B9C2613 Ref B: OSL30EDGE0519 Ref C: 2022-09-25T23:14:22Z
date: Sun, 25 Sep 2022 23:14:21 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 3160906ef6aa1a6818ef21c419ef34ff
bf09597e116214de841f764bbcedbf6a2c7e4103
078ce5b86359e0404d0e82f758800c1ccc1ab148f3ef873812f11d402fb610b8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5338
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 23:14:22 GMT
Last-Modified: Sun, 25 Sep 2022 21:45:24 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 279
www.redditstatic.com/ads/pixel.js
151.101.85.140200 OK 7.7 kB URL HTTP/2 www.redditstatic.com/ads/pixel.js
IP 151.101.85.140:0
File type ASCII text, with very long lines (25224)
Hash 95212d33cfff78ad59f5af5b20c48c53
9b99a4091a6eb716bc68f1428e3c86eca068b25b
bd69f250efa08cb2c0a06c35d91fda762779820d87779019c25211f4559ebb1d
GET /ads/pixel.js HTTP/1.1
Host: www.redditstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 19 Jul 2022 22:48:09 GMT
etag: "95212d33cfff78ad59f5af5b20c48c53"
cache-control: public, max-age=60
content-encoding: gzip
content-type: application/javascript
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 25 Sep 2022 23:14:22 GMT
vary: Accept-Encoding,Origin
server: snooserv
report-to: {"group": "w3-reporting-nel", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting-nel.reddit.com/reports" }]}, {"group": "w3-reporting", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting.reddit.com/reports" }]}
nel: {"report_to": "w3-reporting-nel", "max_age": 14400, "include_subdomains": false, "success_fraction": 0.02, "failure_fraction": 0.02}
content-length: 7722
X-Firefox-Spdy: h2
www.google-analytics.com/r/collect?v=1&_v=a1&ds=AMP&aip&_s=1&dt=Altostima.com%20is%20For%20Sale%20%7C%20BrandBucket&sr=1280x1024&_utmht=1664147660174&cid=amp-7tbZo5Aytjy_QZMlOmpIOQ&tid=UA-1625379-2&dl=https%3A%2F%2Fwww.brandbucket.com%2Fnames%2Faltostima%3Fsource%3Dext&dr=&sd=24&ul=en-us&de=UTF-8&t=pageview&jid=0.42529895170774534&_r=1&a=5928&z=0.04769065658626104>m=2oubu0
142.250.74.174302 Found 390 B URL HTTP/2 www.google-analytics.com/r/collect?v=1&_v=a1&ds=AMP&aip&_s=1&dt=Altostima.com%20is%20For%20Sale%20%7C%20BrandBucket&sr=1280x1024&_utmht=1664147660174&cid=amp-7tbZo5Aytjy_QZMlOmpIOQ&tid=UA-1625379-2&dl=https%3A%2F%2Fwww.brandbucket.com%2Fnames%2Faltostima%3Fsource%3Dext&dr=&sd=24&ul=en-us&de=UTF-8&t=pageview&jid=0.42529895170774534&_r=1&a=5928&z=0.04769065658626104>m=2oubu0
IP 142.250.74.174:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 5c66d393e6a7699f28c267191a585330
f5c2eaab74cf790c27ccfd4ec44e68be0dcde87f
f51b77c0628ed156b2a4b12d12e1a7056f5879d32ab16739d3d743cefe673efc
POST /r/collect?v=1&_v=a1&ds=AMP&aip&_s=1&dt=Altostima.com%20is%20For%20Sale%20%7C%20BrandBucket&sr=1280x1024&_utmht=1664147660174&cid=amp-7tbZo5Aytjy_QZMlOmpIOQ&tid=UA-1625379-2&dl=https%3A%2F%2Fwww.brandbucket.com%2Fnames%2Faltostima%3Fsource%3Dext&dr=&sd=24&ul=en-us&de=UTF-8&t=pageview&jid=0.42529895170774534&_r=1&a=5928&z=0.04769065658626104>m=2oubu0 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://www.brandbucket.com
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-1625379-2&cid=amp-7tbZo5Aytjy_QZMlOmpIOQ&jid=0.42529895170774534&_v=a1&z=0.04769065658626104
access-control-allow-origin: https://www.brandbucket.com
date: Sun, 25 Sep 2022 23:14:22 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: Golfe2
content-length: 390
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google-analytics.com/collect?v=1&_v=a1&ds=AMP&aip&_s=2&dt=Altostima.com%20is%20For%20Sale%20%7C%20BrandBucket&sr=1280x1024&_utmht=1664147660182&cid=amp-7tbZo5Aytjy_QZMlOmpIOQ&tid=UA-1625379-2&dl=https%3A%2F%2Fwww.brandbucket.com%2Fnames%2Faltostima%3Fsource%3Dext&dr=&sd=24&ul=en-us&de=UTF-8&t=event&jid=&ec=&ea=&el=&ev=0&a=5928&z=0.44393288472048664>m=2oubu0&ec=engagement&ea=view_item&ni=1&pr1id=355890&pr1nm=altostima.com&pr1pr=2755&pr1va=Com&pr1br=Invented&pr1qt=1&pr1ps=1
142.250.74.174200 OK 35 B URL HTTP/2 www.google-analytics.com/collect?v=1&_v=a1&ds=AMP&aip&_s=2&dt=Altostima.com%20is%20For%20Sale%20%7C%20BrandBucket&sr=1280x1024&_utmht=1664147660182&cid=amp-7tbZo5Aytjy_QZMlOmpIOQ&tid=UA-1625379-2&dl=https%3A%2F%2Fwww.brandbucket.com%2Fnames%2Faltostima%3Fsource%3Dext&dr=&sd=24&ul=en-us&de=UTF-8&t=event&jid=&ec=&ea=&el=&ev=0&a=5928&z=0.44393288472048664>m=2oubu0&ec=engagement&ea=view_item&ni=1&pr1id=355890&pr1nm=altostima.com&pr1pr=2755&pr1va=Com&pr1br=Invented&pr1qt=1&pr1ps=1
IP 142.250.74.174:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
POST /collect?v=1&_v=a1&ds=AMP&aip&_s=2&dt=Altostima.com%20is%20For%20Sale%20%7C%20BrandBucket&sr=1280x1024&_utmht=1664147660182&cid=amp-7tbZo5Aytjy_QZMlOmpIOQ&tid=UA-1625379-2&dl=https%3A%2F%2Fwww.brandbucket.com%2Fnames%2Faltostima%3Fsource%3Dext&dr=&sd=24&ul=en-us&de=UTF-8&t=event&jid=&ec=&ea=&el=&ev=0&a=5928&z=0.44393288472048664>m=2oubu0&ec=engagement&ea=view_item&ni=1&pr1id=355890&pr1nm=altostima.com&pr1pr=2755&pr1va=Com&pr1br=Invented&pr1qt=1&pr1ps=1 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://www.brandbucket.com
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.brandbucket.com
date: Sun, 25 Sep 2022 23:14:22 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
x-content-type-options: nosniff
access-control-allow-credentials: true
content-type: image/gif
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 35
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash ee4558208e9d55a145c9d49ae18ba190
10e93d874e2d84e8d804267cf114c7ed2e57eaf7
4287c489ab675234562bca90273bdb53a2e940de3f8b855575f4390b9dc2ff1c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6547
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 23:14:22 GMT
Last-Modified: Sun, 25 Sep 2022 21:25:16 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash ee4558208e9d55a145c9d49ae18ba190
10e93d874e2d84e8d804267cf114c7ed2e57eaf7
4287c489ab675234562bca90273bdb53a2e940de3f8b855575f4390b9dc2ff1c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5334
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 23:14:22 GMT
Last-Modified: Sun, 25 Sep 2022 21:45:28 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 1d095ec6a56142cb2084481b06881ef4
82ff236023008fbfb871aaa7c1e976e0cf15e91a
791ac45152415413d4af27f3dde61a021c9c57dcf7ca5b0e65300ebc3cd8815d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 23:14:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-1625379-2&cid=amp-7tbZo5Aytjy_QZMlOmpIOQ&jid=0.42529895170774534&_v=a1&z=0.04769065658626104
64.233.162.157302 Found 388 B URL HTTP/2 stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-1625379-2&cid=amp-7tbZo5Aytjy_QZMlOmpIOQ&jid=0.42529895170774534&_v=a1&z=0.04769065658626104
IP 64.233.162.157:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 52d613afaec7ea4bc7095fd12152c8f8
c3e89d3f24944b8d22aa2ab2a2e70675a286d69c
b15e8f04a90505ca37a95c03b83d85d8ac1838e56c74d3a9c981bb9bd9433d76
GET /r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-1625379-2&cid=amp-7tbZo5Aytjy_QZMlOmpIOQ&jid=0.42529895170774534&_v=a1&z=0.04769065658626104 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-1625379-2&cid=amp-7tbZo5Aytjy_QZMlOmpIOQ&jid=0.42529895170774534&_v=a1&z=0.04769065658626104
access-control-allow-origin: *
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sun, 25 Sep 2022 23:14:22 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: Golfe2
content-length: 388
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.brandbucket.com/amp/tracking/names/altostima?source=ext&ext=355890&source=ext
104.22.7.216200 OK 1.5 kB URL HTTP/2 www.brandbucket.com/amp/tracking/names/altostima?source=ext&ext=355890&source=ext
IP 104.22.7.216:0
Hash 2c1a3da099592fa371858097fd901fea
bc35058216c1c8702bb0bffff96e358b54f926dc
a47ed1615f5dc4cdc3324c6572ff1f5b3b648c06e410e1fb92372e1910357392
GET /amp/tracking/names/altostima?source=ext&ext=355890&source=ext HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Connection: keep-alive
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=kepo6ecug62k16e09he9momal2; land_URL=1664147659%3B%2Fnames%2Faltostima%3Fsource%3Dext; land_referrer=1664147659%3B; bb_recent=355890
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 23:14:22 GMT
content-type: text/html
vary: Accept-Encoding
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
access-control-allow-credentials: true
set-cookie: bb_recent=355890; expires=Sat, 15-Oct-2022 23:14:22 GMT; Max-Age=1728000; path=/
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 750774a83b3db51e-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash bc7883d0a03d9c3559288a600fecc70a
b0e538996510ec8c861264cba4bf79fa73f6f7d6
c3bdc9bb12c7c951ca2d861c95156de2c724acc82386e882864c464132e07ac3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 23:14:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 1d095ec6a56142cb2084481b06881ef4
82ff236023008fbfb871aaa7c1e976e0cf15e91a
791ac45152415413d4af27f3dde61a021c9c57dcf7ca5b0e65300ebc3cd8815d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 23:14:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
api.hubspot.com/livechat-public/v1/message/public?portalId=20882931&conversations-embed=static-1.10824&mobile=false&messagesUtk=de404685d40c45148fc1eacaa579555a&traceId=de404685d40c45148fc1eacaa579555a&hubspotUtk=425fa7c621c8bf293e5e35bfc5e84976&__hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1&referrer=https%3A%2F%2Fwww.brandbucket.com%2F
104.19.155.83200 OK 18 B URL HTTP/2 api.hubspot.com/livechat-public/v1/message/public?portalId=20882931&conversations-embed=static-1.10824&mobile=false&messagesUtk=de404685d40c45148fc1eacaa579555a&traceId=de404685d40c45148fc1eacaa579555a&hubspotUtk=425fa7c621c8bf293e5e35bfc5e84976&__hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1&referrer=https%3A%2F%2Fwww.brandbucket.com%2F
IP 104.19.155.83:0
File type ASCII text, with no line terminators
Hash cc7fd95a87ea3721ce1853bf3c4dd75e
7f687f7881adf0fc407378d375a61b8f198c0912
0f06a4c8d34690d4e42c81f232a5bdfe9fcbde8a54b5ccd0609a313e90da0879
OPTIONS /livechat-public/v1/message/public?portalId=20882931&conversations-embed=static-1.10824&mobile=false&messagesUtk=de404685d40c45148fc1eacaa579555a&traceId=de404685d40c45148fc1eacaa579555a&hubspotUtk=425fa7c621c8bf293e5e35bfc5e84976&__hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1&referrer=https%3A%2F%2Fwww.brandbucket.com%2F HTTP/1.1
Host: api.hubspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-hubspot-messages-uri
Referer: https://www.brandbucket.com/
Origin: https://www.brandbucket.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 25 Sep 2022 23:14:22 GMT
content-type: text/plain; charset=utf-8
content-length: 18
cf-ray: 750774aa7df6b527-OSL
access-control-allow-origin: https://www.brandbucket.com
allow: HEAD,GET,OPTIONS
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: false
access-control-allow-headers: Accept, Accept-Charset, Accept-Encoding, Accept-Language, Content-Type, Host, Origin, Referer, User-Agent, X-HubSpot-Messages-Uri
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
x-hubspot-correlation-id: 304d100a-811f-463f-bc42-ca644542aca4
x-trace: 2BE4142DD49BE09D5C10E034B1F09050E6587EB8BE000000000000000000
set-cookie: __cf_bm=wTNOVtUQP8RefURLHv9hkKgIjJHQAkJ.aA75Nh3N4Nk-1664147662-0-AekytrONJ4uUbm4vDDZ1SbQQmHVr+fB3NhWisjwq20DsctK9mBJh+cGdR3G3wJIDKgEEcbVQcdCwMTrLktVvksY=; path=/; expires=Sun, 25-Sep-22 23:44:22 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=z7v2syFyhrb4lNtBXFd7RqKYL%2B0z0VJuzt6HVvamvg538jfzF3WTbjHAfJh23dKxvVAQ7Cs2bJlTae1mg%2B09%2BWG732Dw8NuBKKx8ZB0WXcse4%2BYoWqmzoCxtIgsmt4SMdQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-1625379-2&cid=amp-7tbZo5Aytjy_QZMlOmpIOQ&jid=0.42529895170774534&_v=a1&z=0.04769065658626104
142.250.74.164302 Found 0 B URL HTTP/2 www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-1625379-2&cid=amp-7tbZo5Aytjy_QZMlOmpIOQ&jid=0.42529895170774534&_v=a1&z=0.04769065658626104
IP 142.250.74.164:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-1625379-2&cid=amp-7tbZo5Aytjy_QZMlOmpIOQ&jid=0.42529895170774534&_v=a1&z=0.04769065658626104 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 25 Sep 2022 23:14:22 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-1625379-2&cid=amp-7tbZo5Aytjy_QZMlOmpIOQ&jid=0.42529895170774534&_v=a1&z=0.04769065658626104&slf_rd=1&random=56143487
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash ee4558208e9d55a145c9d49ae18ba190
10e93d874e2d84e8d804267cf114c7ed2e57eaf7
4287c489ab675234562bca90273bdb53a2e940de3f8b855575f4390b9dc2ff1c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6547
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 23:14:22 GMT
Last-Modified: Sun, 25 Sep 2022 21:25:16 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4474bfba80fa3257384d1c908e1353bf
9a2869a3888743d575e6f87d2a7479d5d97fa123
63378e949c0ea9564e7660ea0522ce7a59727a0a5232b81b77f8525899f67a2b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 23:14:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.ads-twitter.com/uwt.js
151.101.84.157200 OK 15 kB URL HTTP/2 static.ads-twitter.com/uwt.js
IP 151.101.84.157:0
File type ASCII text, with very long lines (57443), with no line terminators
Hash 1e9c4d503a9e162d8b549dc3d9c040e2
1fa99d7d7e878cdd45567af4b0c3c65542036c1d
f936c0124c595fe5d0c7858277f3a5f3bd104de39d36ac92557501fa1dec8563
GET /uwt.js HTTP/1.1
Host: static.ads-twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 30 Aug 2022 20:19:10 GMT
cache-control: no-cache
content-type: application/javascript; charset=utf-8
content-encoding: gzip
etag: "d4de8398858246712016031c834bb061+gzip+gzip"
accept-ranges: bytes
date: Sun, 25 Sep 2022 23:14:22 GMT
x-served-by: cache-iad-kjyo7100095-IAD, cache-bma1633-BMA
x-cache: HIT, HIT
vary: Accept-Encoding,Host
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT
content-length: 15317
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 9f61c5ada09e4fa747144a96e95a943f
e7f3119b4d75a72dd0409673b9789ac1f3233d23
95afa75f054462b0db7b7b59ebadecc07ce8e4eac12b07e76645848983c52bcf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 23:14:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 12482f755f1264f5587bb8cdc7fff5c3
ff01e5ec3898e03cd21ddd586dab090e994abace
7560f40a0cd5c96d14d22048dc6c0a2937c0f7aad9b23b4e4baf36cd08cec337
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4624
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 23:14:22 GMT
Last-Modified: Sun, 25 Sep 2022 21:57:18 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 312
bat.bing.com/bat.js
13.107.21.200200 OK 11 kB IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (38826), with no line terminators
Hash 293ae3e0fc8b0d5c143fdf9d8490228d
3976c659b908e70818a3a1ac71860b497fe2d1a9
04a840d967ae836e14179bde574cabf14a1fc871182ca0f8193e7a0b06c727ab
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11367
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 28 Jul 2022 17:32:37 GMT
accept-ranges: bytes
etag: "80a8697a8a2d81:0"
vary: Accept-Encoding
set-cookie: MUID=1C1CAE7366266876036FBC5967D369FE; domain=.bing.com; expires=Fri, 20-Oct-2023 23:14:22 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: AA383B8169FB4B86A44A3C01B083120E Ref B: OSL30EDGE0521 Ref C: 2022-09-25T23:14:22Z
date: Sun, 25 Sep 2022 23:14:21 GMT
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-1625379-2&cid=amp-7tbZo5Aytjy_QZMlOmpIOQ&jid=0.42529895170774534&_v=a1&z=0.04769065658626104&slf_rd=1&random=56143487
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-1625379-2&cid=amp-7tbZo5Aytjy_QZMlOmpIOQ&jid=0.42529895170774534&_v=a1&z=0.04769065658626104&slf_rd=1&random=56143487
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-1625379-2&cid=amp-7tbZo5Aytjy_QZMlOmpIOQ&jid=0.42529895170774534&_v=a1&z=0.04769065658626104&slf_rd=1&random=56143487 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 25 Sep 2022 23:14:22 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 9f61c5ada09e4fa747144a96e95a943f
e7f3119b4d75a72dd0409673b9789ac1f3233d23
95afa75f054462b0db7b7b59ebadecc07ce8e4eac12b07e76645848983c52bcf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 23:14:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
alb.reddit.com/rp.gif?ts=1664147660800&id=t2_hlvcbpjd&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=2ffa5e12-acb7-4a4e-b83b-c1573bfe85a7&aaid=&em=&external_id=&idfa=&integration=reddit&opt_out=0&sh=1280&sw=1024&v=rdt_02c59ad6
151.101.85.140200 OK 42 B URL HTTP/2 alb.reddit.com/rp.gif?ts=1664147660800&id=t2_hlvcbpjd&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=2ffa5e12-acb7-4a4e-b83b-c1573bfe85a7&aaid=&em=&external_id=&idfa=&integration=reddit&opt_out=0&sh=1280&sw=1024&v=rdt_02c59ad6
IP 151.101.85.140:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /rp.gif?ts=1664147660800&id=t2_hlvcbpjd&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=2ffa5e12-acb7-4a4e-b83b-c1573bfe85a7&aaid=&em=&external_id=&idfa=&integration=reddit&opt_out=0&sh=1280&sw=1024&v=rdt_02c59ad6 HTTP/1.1
Host: alb.reddit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Varnish
retry-after: 0
cross-origin-resource-policy: cross-origin
content-type: image/gif
accept-ranges: bytes
date: Sun, 25 Sep 2022 23:14:22 GMT
via: 1.1 varnish
content-length: 42
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 8908a4b5d446f5f47586fe5a000c7c88
75c8c0179f776e1547fd23e70c2e9543f61eab29
ea2be68ff6c223ddba8f069bc63366fbe56d06eaa3c00925361e400b3fa8ca08
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6435
Cache-Control: max-age=134849
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 23:14:22 GMT
Etag: "6330336d-138"
Expires: Tue, 27 Sep 2022 12:41:51 GMT
Last-Modified: Sun, 25 Sep 2022 10:54:37 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 312
t.co/i/adsct?bci=3&eci=2&event_id=b3e5c30c-aba1-43ca-af99-c3a9a8e31479&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=9a3c8ce4-fd66-45a8-b312-1303a05a0a3f&tw_document_href=https%3A%2F%2Fwww.brandbucket.com%2Famp%2Ftracking%2Fnames%2Faltostima%3Fsource%3Dext%26ext%3D355890%26source%3Dext%23amp%3D1&tw_document_referrer=https%3A%2F%2Fwww.brandbucket.com%2F&tw_iframe_status=1&tw_order_quantity=0&tw_sale_amount=0&txn_id=o7akj&type=javascript&version=2.3.27
104.244.42.5200 OK 43 B URL HTTP/2 t.co/i/adsct?bci=3&eci=2&event_id=b3e5c30c-aba1-43ca-af99-c3a9a8e31479&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=9a3c8ce4-fd66-45a8-b312-1303a05a0a3f&tw_document_href=https%3A%2F%2Fwww.brandbucket.com%2Famp%2Ftracking%2Fnames%2Faltostima%3Fsource%3Dext%26ext%3D355890%26source%3Dext%23amp%3D1&tw_document_referrer=https%3A%2F%2Fwww.brandbucket.com%2F&tw_iframe_status=1&tw_order_quantity=0&tw_sale_amount=0&txn_id=o7akj&type=javascript&version=2.3.27
IP 104.244.42.5:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=b3e5c30c-aba1-43ca-af99-c3a9a8e31479&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=9a3c8ce4-fd66-45a8-b312-1303a05a0a3f&tw_document_href=https%3A%2F%2Fwww.brandbucket.com%2Famp%2Ftracking%2Fnames%2Faltostima%3Fsource%3Dext%26ext%3D355890%26source%3Dext%23amp%3D1&tw_document_referrer=https%3A%2F%2Fwww.brandbucket.com%2F&tw_iframe_status=1&tw_order_quantity=0&tw_sale_amount=0&txn_id=o7akj&type=javascript&version=2.3.27 HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Cookie: muc_ads=155049c2-b949-404c-b33d-425afe910b2a
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 25 Sep 2022 23:14:21 GMT
perf: 7626143928
server: tsa_o
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: f80c789f362df4af
strict-transport-security: max-age=0
x-response-time: 103
x-connection-hash: 7531d63d6b8eea695ce53a96f71198f3ebcb3e4dc5976b83e31c24a69d2f8f26
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 7fb4df915d04b7ad9fc63a5387df0de8
b146aa5505e39b734c2591334dddc8192cade32c
4c25a2e5f33eeadf1f3e21cbc4fe7acc9e1ab87743b3130adda2fd94f1fd160b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4047
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 23:14:22 GMT
Last-Modified: Sun, 25 Sep 2022 22:06:55 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 312
bat.bing.com/action/0?ti=138002826&Ver=2&mid=f46848b8-bd1e-49b4-bfd6-6dbe94f902cd&sid=c97562e03d2711ed9cfe6768d5288682&vid=a70dab60e55711ecad10f9ba179de29e&vids=0&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=All%20names&p=https%3A%2F%2Fwww.brandbucket.com%2F&r=<=1022&evt=pageLoad&ifm=1&sv=1&rn=815578
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=138002826&Ver=2&mid=f46848b8-bd1e-49b4-bfd6-6dbe94f902cd&sid=c97562e03d2711ed9cfe6768d5288682&vid=a70dab60e55711ecad10f9ba179de29e&vids=0&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=All%20names&p=https%3A%2F%2Fwww.brandbucket.com%2F&r=<=1022&evt=pageLoad&ifm=1&sv=1&rn=815578
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=138002826&Ver=2&mid=f46848b8-bd1e-49b4-bfd6-6dbe94f902cd&sid=c97562e03d2711ed9cfe6768d5288682&vid=a70dab60e55711ecad10f9ba179de29e&vids=0&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=All%20names&p=https%3A%2F%2Fwww.brandbucket.com%2F&r=<=1022&evt=pageLoad&ifm=1&sv=1&rn=815578 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=1289F3C9EC5C64321B39E1E3EDA96513; domain=.bing.com; expires=Fri, 20-Oct-2023 23:14:23 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: B6DE5DAF1B584A03A7407780F7B611D7 Ref B: OSL30EDGE0521 Ref C: 2022-09-25T23:14:23Z
date: Sun, 25 Sep 2022 23:14:22 GMT
X-Firefox-Spdy: h2
bat.bing.com/p/action/138002826.js
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/138002826.js
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/138002826.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
set-cookie: MUID=359DE6154BFB684B220EF43F4A0E69E8; domain=.bing.com; expires=Fri, 20-Oct-2023 23:14:23 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 7EC6197E0070418391690F2DC3EBF171 Ref B: OSL30EDGE0521 Ref C: 2022-09-25T23:14:23Z
date: Sun, 25 Sep 2022 23:14:22 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash e25b313e36f0ffada6f78b83c5d26d94
d78dea6c8de9f2ad64ae9e2c57038ecd20d2366f
8a6881d7aa16f993a85b3fed358f81a952998be8ff13b72f1000c6aa7fbc509c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2696
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 23:14:23 GMT
Last-Modified: Sun, 25 Sep 2022 22:29:27 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 314
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash e25b313e36f0ffada6f78b83c5d26d94
d78dea6c8de9f2ad64ae9e2c57038ecd20d2366f
8a6881d7aa16f993a85b3fed358f81a952998be8ff13b72f1000c6aa7fbc509c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2697
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 23:14:23 GMT
Last-Modified: Sun, 25 Sep 2022 22:29:27 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 314
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 79775ecc866c1ed5eed67130694cff87
7c7e3db11f9e5db5377eb14acf095c01c9fa07b4
1a6d4b8a200ff0a129849d5b4268aa553b2feb7de3ef6eaa93abafa8032666b7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2537
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 23:14:23 GMT
Last-Modified: Sun, 25 Sep 2022 22:32:06 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 312
sslwidget.criteo.com/event?a=23078&v=5.12.1&p0=e%3Dexd%26ci%3Damp-7tbZo5Aytjy_QZMlOmpIOQ%26site_type%3Dd&p1=e%3Dvpg&p2=e%3Ddis&adce=1&bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA&tld=brandbucket.com&dy=1&fu=https%253A%252F%252Fwww.brandbucket.com%252Fnames%252Faltostima%253Fsource%253Dext&dtycbr=87266
178.250.2.151302 Found 0 B URL HTTP/2 sslwidget.criteo.com/event?a=23078&v=5.12.1&p0=e%3Dexd%26ci%3Damp-7tbZo5Aytjy_QZMlOmpIOQ%26site_type%3Dd&p1=e%3Dvpg&p2=e%3Ddis&adce=1&bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA&tld=brandbucket.com&dy=1&fu=https%253A%252F%252Fwww.brandbucket.com%252Fnames%252Faltostima%253Fsource%253Dext&dtycbr=87266
IP 178.250.2.151:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /event?a=23078&v=5.12.1&p0=e%3Dexd%26ci%3Damp-7tbZo5Aytjy_QZMlOmpIOQ%26site_type%3Dd&p1=e%3Dvpg&p2=e%3Ddis&adce=1&bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA&tld=brandbucket.com&dy=1&fu=https%253A%252F%252Fwww.brandbucket.com%252Fnames%252Faltostima%253Fsource%253Dext&dtycbr=87266 HTTP/1.1
Host: sslwidget.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sun, 25 Sep 2022 23:14:22 GMT
server: Kestrel
content-length: 0
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
expires: 0
location: https://widget.us.criteo.com/event?a=23078&v=5.12.1&p0=e%3Dexd%26ci%3Damp-7tbZo5Aytjy_QZMlOmpIOQ%26site_type%3Dd&p1=e%3Dvpg&p2=e%3Ddis&adce=1&bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA&tld=brandbucket.com&dy=1&fu=https%253A%252F%252Fwww.brandbucket.com%252Fnames%252Faltostima%253Fsource%253Dext&dtycbr=87266
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
server-processing-duration-in-ticks: 5384502
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
api.hubspot.com/livechat-public/v1/message/public?portalId=20882931&conversations-embed=static-1.10824&mobile=false&messagesUtk=de404685d40c45148fc1eacaa579555a&traceId=de404685d40c45148fc1eacaa579555a&hubspotUtk=425fa7c621c8bf293e5e35bfc5e84976&__hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1&referrer=https%3A%2F%2Fwww.brandbucket.com%2F
104.19.155.83200 OK 186 B URL HTTP/2 api.hubspot.com/livechat-public/v1/message/public?portalId=20882931&conversations-embed=static-1.10824&mobile=false&messagesUtk=de404685d40c45148fc1eacaa579555a&traceId=de404685d40c45148fc1eacaa579555a&hubspotUtk=425fa7c621c8bf293e5e35bfc5e84976&__hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1&referrer=https%3A%2F%2Fwww.brandbucket.com%2F
IP 104.19.155.83:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 66bf77dd031ebfc350b4b4e8a934e6fc
333f3ea9dd153ade95ea6967005f8385b2aeff97
d4d5981f0ca362dd1e2a095d58b8c7298f01e15327d671cf3eaf21499c7b1e4b
GET /livechat-public/v1/message/public?portalId=20882931&conversations-embed=static-1.10824&mobile=false&messagesUtk=de404685d40c45148fc1eacaa579555a&traceId=de404685d40c45148fc1eacaa579555a&hubspotUtk=425fa7c621c8bf293e5e35bfc5e84976&__hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1&referrer=https%3A%2F%2Fwww.brandbucket.com%2F HTTP/1.1
Host: api.hubspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-HubSpot-Messages-Uri: https://www.brandbucket.com/amp/tracking/names/altostima?source=ext&ext=355890&source=ext#amp=1
Origin: https://www.brandbucket.com
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 23:14:23 GMT
content-type: application/json;charset=utf-8
content-length: 186
cf-ray: 750774ab4e80b527-OSL
access-control-allow-origin: https://www.brandbucket.com
cache-control: no-cache, no-store, no-transform, must-revalidate, max-age=0
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: false
access-control-allow-headers: Accept, Accept-Charset, Accept-Encoding, Accept-Language, Content-Type, Host, Origin, Referer, User-Agent, X-HubSpot-Messages-Uri
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
x-hubspot-correlation-id: 81673b63-4242-4bec-bccb-6489a6ee306a
x-trace: 2B485056F8D6189068C83881A90FB5974715C81777000000000000000000
set-cookie: __cf_bm=f4iONMLhoUqJb2q_K0ARODdKPXdgwHLE54ydfiTSoII-1664147663-0-AQuHMRkoZBUbHUmjq6x/xZWIhvEc19GTCsxw/bx/lYr0vmQkxuWRj3yFGuvu2uOjGloGbi+P//rEOZf2OrFZX7k=; path=/; expires=Sun, 25-Sep-22 23:44:23 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XviihBw%2FR956YJCxS2HCoMHscAmUqXgtdgDI6Ri6vA7hiIjPfsmhORcEU3niqvzyq50hG6Jx8lzc1TgAKgsWnNZ1%2F0EvfPkI5V1Yx11AnaVMYnE%2FeK9PqpbCGStUXyU6WQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
gum.criteo.com/syncframe?topUrl=www.brandbucket.com&origin=onetag
178.250.0.157200 OK 5.3 kB URL HTTP/2 gum.criteo.com/syncframe?topUrl=www.brandbucket.com&origin=onetag
IP 178.250.0.157:0
Hash b299240beca715ae186fdaf67b56ded6
a3c150857d1ca25485576d47a48d5bab67d835ed
c26bb2da2c3b80408c5d1f7ef87473e8f9b6e573241288c2345f0be5eca4f751
GET /syncframe?topUrl=www.brandbucket.com&origin=onetag HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 25 Sep 2022 23:14:22 GMT
content-type: text/html; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
set-cookie: uid=b97e56e9-5ce4-4bdf-8c2d-8018fed54b20; expires=Fri, 20 Oct 2023 23:14:22 GMT; domain=.criteo.com; path=/; secure; samesite=none
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 668719
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash f099488875f4ff38b47dad3da1b540e8
7b77fcbc02348ca5c23d0342fa5d9cf10e447ef9
035e630f17240add6d97720768d298a286a9e076617a28d681ca17efb3280eb2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3930
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 23:14:23 GMT
Last-Modified: Sun, 25 Sep 2022 22:08:53 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 313
s.adroll.com/j/roundtrip.js
143.204.55.84200 OK 17 kB URL HTTP/1.1 s.adroll.com/j/roundtrip.js
IP 143.204.55.84:0
File type ASCII text, with very long lines (1096)
Hash cdc1509b78fb548643392a6919a4ad6f
6fdf59e351a2e7fade5eeb661a0871ea12db0a7b
58c2118995d5680b9d664ef499babf4b1b7fff2ec59a9bf56eabebe8fde5b4dd
GET /j/roundtrip.js HTTP/1.1
Host: s.adroll.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 07 Sep 2022 21:24:31 GMT
X-Amz-Server-Side-Encryption: AES256
X-Amz-Version-Id: Vddx38ZQKv1IbZ14KTosCACMGBmCuRF1
Server: AmazonS3
Content-Encoding: gzip
Date: Sun, 25 Sep 2022 22:22:51 GMT
Cache-Control: max-age=3600, must-revalidate
Etag: W/"ce41fb88f59dfd9edbd6253effb535a4"
Vary: Accept-Encoding
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
Age: 3092
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 3HL7O4upYJfZJK1vgfVXgiLbKB2UsWI8Lwra9Bf9W3-FPD03DXZIag==
s.adroll.com/j/pre/CX5WGUX2VJFQDM33UIXE3I/GJHNLHQNWFAQ7GKA4IB65N/index.js
143.204.55.84200 OK 0 B URL HTTP/1.1 s.adroll.com/j/pre/CX5WGUX2VJFQDM33UIXE3I/GJHNLHQNWFAQ7GKA4IB65N/index.js
IP 143.204.55.84:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /j/pre/CX5WGUX2VJFQDM33UIXE3I/GJHNLHQNWFAQ7GKA4IB65N/index.js HTTP/1.1
Host: s.adroll.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
Content-Length: 0
Connection: keep-alive
Last-Modified: Fri, 23 Sep 2022 20:14:37 GMT
X-Amz-Server-Side-Encryption: AES256
X-Amz-Version-Id: BWJaGLu59AGZyfe9bO0V.44WAWDG38RE
Accept-Ranges: bytes
Server: AmazonS3
Date: Sun, 25 Sep 2022 22:52:26 GMT
Cache-Control: max-age=3600, must-revalidate
Etag: "d41d8cd98f00b204e9800998ecf8427e"
Vary: Accept-Encoding
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
Age: 2454
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: EUSE57Noqg8m3C0s5RXbJmz2-4877NVE32eSV-y_ZZfOKQVK0iOekg==
s.adroll.com/j/pre/CX5WGUX2VJFQDM33UIXE3I/GJHNLHQNWFAQ7GKA4IB65N/fpconsent.js
143.204.55.84302 Moved Temporarily 0 B URL HTTP/1.1 s.adroll.com/j/pre/CX5WGUX2VJFQDM33UIXE3I/GJHNLHQNWFAQ7GKA4IB65N/fpconsent.js
IP 143.204.55.84:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /j/pre/CX5WGUX2VJFQDM33UIXE3I/GJHNLHQNWFAQ7GKA4IB65N/fpconsent.js HTTP/1.1
Host: s.adroll.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Content-Type: application/xml
Content-Length: 0
Connection: keep-alive
Date: Sun, 25 Sep 2022 04:36:53 GMT
Server: AmazonS3
Location: https://s.adroll.com/j/pre/index.js
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
Age: 67049
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 70HzONPiSShJ-MY9NWCtjjw-zTORi1M7NL_QoQJtWyg7hRYIm5wlzw==
s.adroll.com/j/exp/CX5WGUX2VJFQDM33UIXE3I/index.js
143.204.55.84302 Moved Temporarily 0 B URL HTTP/1.1 s.adroll.com/j/exp/CX5WGUX2VJFQDM33UIXE3I/index.js
IP 143.204.55.84:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /j/exp/CX5WGUX2VJFQDM33UIXE3I/index.js HTTP/1.1
Host: s.adroll.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Content-Type: application/xml
Content-Length: 0
Connection: keep-alive
Date: Sun, 25 Sep 2022 14:07:29 GMT
Server: AmazonS3
Location: https://s.adroll.com/j/exp/index.js
Via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
Age: 32813
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: BCCe32FMGX9B6BlYSDW_Aw7AeQJuADJ1B_2YA_zAbHtYFFSNuMd5_Q==
s.adroll.com/j/pre/index.js
143.204.55.84200 OK 0 B URL HTTP/1.1 s.adroll.com/j/pre/index.js
IP 143.204.55.84:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /j/pre/index.js HTTP/1.1
Host: s.adroll.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Last-Modified: Wed, 15 Jan 2020 23:54:18 GMT
X-Amz-Server-Side-Encryption: AES256
X-Amz-Version-Id: nQEe8wQ7h0ROt7P4GJfDfstto6x684Hy
Accept-Ranges: bytes
Server: AmazonS3
Date: Sun, 25 Sep 2022 01:07:35 GMT
Etag: "d41d8cd98f00b204e9800998ecf8427e"
Vary: Accept-Encoding
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
Age: 80135
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: mWssEjQtv7bJveGNnAR-Vs5H596PUEdhehcEAlqAYV7GrM65ySc9HA==
s.adroll.com/j/exp/index.js
143.204.55.84200 OK 28 B URL HTTP/1.1 s.adroll.com/j/exp/index.js
IP 143.204.55.84:0
File type ASCII text, with no line terminators
Hash 5816cced8568d223aa09d889f300692b
95cab5e474d7391762c3da5c7dc50fcf05df529f
f59e5f34a941183aacaed25322ac0856628493c2cfd936ded3fddc0a49510e52
GET /j/exp/index.js HTTP/1.1
Host: s.adroll.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 28
Connection: keep-alive
Last-Modified: Fri, 02 Sep 2022 17:25:28 GMT
X-Amz-Server-Side-Encryption: AES256
X-Amz-Version-Id: VS8aSrwndm.MeiNnyJ10ruHH56v74CIF
Accept-Ranges: bytes
Server: AmazonS3
Date: Sun, 25 Sep 2022 02:24:02 GMT
Etag: "5816cced8568d223aa09d889f300692b"
Vary: Accept-Encoding
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
Age: 75058
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: VuuVsYES33q9vhG3pxFauKBWlkeH_zHBVEs5pgiqO8lwWl322PhFHA==
d.adroll.com/consent/check/CX5WGUX2VJFQDM33UIXE3I?arrfrr=https%3A%2F%2Fwww.brandbucket.com%2Famp%2Ftracking%2Fnames%2Faltostima%3Fsource%3Dext%26ext%3D355890%26source%3Dext%23amp%3D1&_s=465a6237c6a7cd4315cb5ef3117f8a1e&_b=2
52.211.202.0200 OK 447 B URL HTTP/2 d.adroll.com/consent/check/CX5WGUX2VJFQDM33UIXE3I?arrfrr=https%3A%2F%2Fwww.brandbucket.com%2Famp%2Ftracking%2Fnames%2Faltostima%3Fsource%3Dext%26ext%3D355890%26source%3Dext%23amp%3D1&_s=465a6237c6a7cd4315cb5ef3117f8a1e&_b=2
IP 52.211.202.0:0
File type ASCII text, with very long lines (447), with no line terminators
Hash 86fad4864bab32589c662f2746ee2ba7
c980a6400bbca177679c02e42158ab9731362a25
bbc0b94e79cca791b97a281ad28bab35e010e050e9f5ed4f657e2cbb6140b17a
GET /consent/check/CX5WGUX2VJFQDM33UIXE3I?arrfrr=https%3A%2F%2Fwww.brandbucket.com%2Famp%2Ftracking%2Fnames%2Faltostima%3Fsource%3Dext%26ext%3D355890%26source%3Dext%23amp%3D1&_s=465a6237c6a7cd4315cb5ef3117f8a1e&_b=2 HTTP/1.1
Host: d.adroll.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 23:14:23 GMT
content-type: application/javascript
content-length: 447
server: nginx/1.20.0
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40
178.250.0.157302 Found 0 B URL HTTP/2 gum.criteo.com/sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40
IP 178.250.0.157:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Sun, 25 Sep 2022 23:14:23 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://dpm.demdex.net/ibs:dpid=28645&dpuuid=
server-processing-duration-in-ticks: 727520
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
contextual.media.net/cksync.php?cs=3&type=crt&ovsid=k-omlqdPZ7JCeMDRS4T1MjTjV_SXKUAKV3Lcboyg
23.38.200.22200 OK 45 B URL HTTP/2 contextual.media.net/cksync.php?cs=3&type=crt&ovsid=k-omlqdPZ7JCeMDRS4T1MjTjV_SXKUAKV3Lcboyg
IP 23.38.200.22:0
File type GIF image data, version 87a, 1 x 1\012- data
Hash 99cceceaed4d575484b69ddaf9ed66a7
1e3a3b15296b585833a22d987a387aa58aa1642d
832f63f4187160c195b04f1911c2e623a75e805f4b23abb9b0bea214b4283a43
GET /cksync.php?cs=3&type=crt&ovsid=k-omlqdPZ7JCeMDRS4T1MjTjV_SXKUAKV3Lcboyg HTTP/1.1
Host: contextual.media.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
content-length: 45
content-type: image/gif
set-cookie: visitor-id=3071492633580226000V10; Expires=Mon, 25 Sep 2023 23:14:23 GMT; domain=.media.net; Path=/;
data-c-ts=1664147663;Expires=Tue, 25 Oct 2022 23:14:23 GMT;path=/;domain=.media.net;
data-c=k-omlqdPZ7JCeMDRS4T1MjTjV_SXKUAKV3Lcboyg~~3;Expires=Tue, 25 Oct 2022 23:14:23 GMT;path=/;domain=.media.net;
p3p: CP="NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA", CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA, CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA, CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA
strict-transport-security: max-age=31536000
x-mnet-hl2: E
expires: Sun, 25 Sep 2022 23:14:23 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 25 Sep 2022 23:14:23 GMT
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash 5c85847a2c328ce0ce16e9b16d690664
67aff9a779e8f0bf15a9536b5f4ae1b24372d2d3
c6a4beb8087632396abe412270967899610df0402c50ba4895aed9721e87500f
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 25 Sep 2022 23:14:23 GMT
Last-Modified: Sun, 25 Sep 2022 22:13:16 GMT
Server: ECS (nyb/1D1A)
X-Cache: Miss from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: DvNV29Vyg2LmhsAGxa-1R_3aW8AOtg9W-321---3HwDgzzXn-mcegw==
Age: 3667
r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-c0VWf_Z7JCeMDRS4T1MjTjV_SXLGvtNlu2SoMQ
104.18.18.126302 Found 0 B URL HTTP/2 r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-c0VWf_Z7JCeMDRS4T1MjTjV_SXLGvtNlu2SoMQ
IP 104.18.18.126:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rum?cm_dsp_id=20&external_user_id=k-c0VWf_Z7JCeMDRS4T1MjTjV_SXLGvtNlu2SoMQ HTTP/1.1
Host: r.casalemedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sun, 25 Sep 2022 23:14:23 GMT
content-length: 0
location: /rum?cm_dsp_id=20&external_user_id=k-c0VWf_Z7JCeMDRS4T1MjTjV_SXLGvtNlu2SoMQ&C=1
cf-ray: 750774b2aefeb506-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
pragma: no-cache
set-cookie: CMID=YzDgz.GSs-U3SEHkERE3WwAA; Path=/; Domain=casalemedia.com; Expires=Mon, 25 Sep 2023 23:14:23 GMT; Max-Age=31536000; Secure; SameSite=None
CMPS=4453; Path=/; Domain=casalemedia.com; Expires=Sat, 24 Dec 2022 23:14:23 GMT; Max-Age=7776000; Secure; SameSite=None
CMPRO=4453; Path=/; Domain=casalemedia.com; Expires=Sat, 24 Dec 2022 23:14:23 GMT; Max-Age=7776000; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yFe44NdRIl4GVhmN19R5s2Cpwd%2FFJEuh0XqMKO8L47VxQgo%2FX1cYf7Lz%2B6NWxCi%2FztdVnJ44hHw2t%2BT2%2BAp3VND3GQRjrQNQbAbd962gZ2QURwhhOzbO8uertI1lcEuSWdTF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc&google_ula=913071&CriteoUserId=k-FydOQfZ7JCeMDRS4T1MjTjV_SXLwQ0rDov0h3g&google_cm&google_hm=ay1GeWRPUWZaN0pDZU1EUlM0VDFNalRqVl9TWEx3UTByRG92MGgzZw
142.250.74.98302 Found 440 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc&google_ula=913071&CriteoUserId=k-FydOQfZ7JCeMDRS4T1MjTjV_SXLwQ0rDov0h3g&google_cm&google_hm=ay1GeWRPUWZaN0pDZU1EUlM0VDFNalRqVl9TWEx3UTByRG92MGgzZw
IP 142.250.74.98:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 544476c5a7c3538f054970b64f73df2e
ba1f9c5d2378f62796825ffa00ff863c58289bde
24e574c63956f3c8f25bd023167b68c0f747b9d36107cd10407615614ef7ba94
GET /pixel?google_nid=cjp&google_sc&google_ula=913071&CriteoUserId=k-FydOQfZ7JCeMDRS4T1MjTjV_SXLwQ0rDov0h3g&google_cm&google_hm=ay1GeWRPUWZaN0pDZU1EUlM0VDFNalRqVl9TWEx3UTByRG92MGgzZw HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
location: https://cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-FydOQfZ7JCeMDRS4T1MjTjV_SXLwQ0rDov0h3g&google_cm=&google_hm=ay1GeWRPUWZaN0pDZU1EUlM0VDFNalRqVl9TWEx3UTByRG92MGgzZw&google_tc=
date: Sun, 25 Sep 2022 23:14:23 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 440
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sun, 25-Sep-2022 23:29:23 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-FydOQfZ7JCeMDRS4T1MjTjV_SXLwQ0rDov0h3g&google_cm=&google_hm=ay1GeWRPUWZaN0pDZU1EUlM0VDFNalRqVl9TWEx3UTByRG92MGgzZw&google_tc=
142.250.74.98302 Found 332 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-FydOQfZ7JCeMDRS4T1MjTjV_SXLwQ0rDov0h3g&google_cm=&google_hm=ay1GeWRPUWZaN0pDZU1EUlM0VDFNalRqVl9TWEx3UTByRG92MGgzZw&google_tc=
IP 142.250.74.98:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 95541ccac08ceae9d034c3a75377aa07
691df1ceb8ce2b748687272e79ca40350e3f2d32
c82a428ff538b8402f6cc96effe7e57be31784a0be528681c2013ec277cd4188
GET /pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-FydOQfZ7JCeMDRS4T1MjTjV_SXLwQ0rDov0h3g&google_cm=&google_hm=ay1GeWRPUWZaN0pDZU1EUlM0VDFNalRqVl9TWEx3UTByRG92MGgzZw&google_tc= HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: https://dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-FydOQfZ7JCeMDRS4T1MjTjV_SXLwQ0rDov0h3g&google_error=3
date: Sun, 25 Sep 2022 23:14:23 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 332
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-c0VWf_Z7JCeMDRS4T1MjTjV_SXLGvtNlu2SoMQ&C=1
104.18.18.126200 OK 43 B URL HTTP/2 r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-c0VWf_Z7JCeMDRS4T1MjTjV_SXLGvtNlu2SoMQ&C=1
IP 104.18.18.126:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /rum?cm_dsp_id=20&external_user_id=k-c0VWf_Z7JCeMDRS4T1MjTjV_SXLGvtNlu2SoMQ&C=1 HTTP/1.1
Host: r.casalemedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 23:14:23 GMT
content-type: image/gif
content-length: 43
cf-ray: 750774b30f2fb506-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
pragma: no-cache
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Wq0R0SVj%2B4jdOMW6iuANv5sXxJzUhw4%2FZV5rncg%2FMqNmTug56bxHZ%2F%2Bm%2BX490Ytr%2Byn5EQHFNJeNDhYljzDhsRBa5Kv0gzdJDdcQKoXvMKjIkzWUEXfyV25Ft74bDbrsYS1z"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ib.adnxs.com/getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID
185.89.210.153307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID
IP 185.89.210.153:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Sun, 25 Sep 2022 23:14:23 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
AN-X-Request-Uuid: 113e4de2-a11d-4c9f-aed0-f8ac9cb75b52
Set-Cookie: uuid2=4958691862313530775; SameSite=None; Path=/; Max-Age=7776000; Expires=Sat, 24-Dec-2022 23:14:23 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 943.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
widget.us.criteo.com/event?a=23078&v=5.12.1&p0=e%3Dexd%26ci%3Damp-7tbZo5Aytjy_QZMlOmpIOQ%26site_type%3Dd&p1=e%3Dvpg&p2=e%3Ddis&adce=1&bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA&tld=brandbucket.com&dy=1&fu=https%253A%252F%252Fwww.brandbucket.com%252Fnames%252Faltostima%253Fsource%253Dext&dtycbr=87266
74.119.119.150200 OK 3.7 kB URL HTTP/2 widget.us.criteo.com/event?a=23078&v=5.12.1&p0=e%3Dexd%26ci%3Damp-7tbZo5Aytjy_QZMlOmpIOQ%26site_type%3Dd&p1=e%3Dvpg&p2=e%3Ddis&adce=1&bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA&tld=brandbucket.com&dy=1&fu=https%253A%252F%252Fwww.brandbucket.com%252Fnames%252Faltostima%253Fsource%253Dext&dtycbr=87266
IP 74.119.119.150:0
Hash 70f0a3dcca632fefe5bcbb8ef9c9385e
633a7efef828c0bded036e822d26eb1ceacd5bcf
cebf02d2d242ce6ca857d971ab09f6ce33cd960f023d9da2e23f93081fe47052
GET /event?a=23078&v=5.12.1&p0=e%3Dexd%26ci%3Damp-7tbZo5Aytjy_QZMlOmpIOQ%26site_type%3Dd&p1=e%3Dvpg&p2=e%3Ddis&adce=1&bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA&tld=brandbucket.com&dy=1&fu=https%253A%252F%252Fwww.brandbucket.com%252Fnames%252Faltostima%253Fsource%253Dext&dtycbr=87266 HTTP/1.1
Host: widget.us.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.brandbucket.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 25 Sep 2022 23:14:23 GMT
content-type: application/x-javascript
server: Kestrel
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
expires: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
p3p: NON DSP COR CURa PSA PSD OUR BUS NAV STA
timing-allow-origin: *
server-processing-duration-in-ticks: 18637126
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
185.89.210.153302 Found 0 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
IP 185.89.210.153:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.21.3
Date: Sun, 25 Sep 2022 23:14:23 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
AN-X-Request-Uuid: 9f0beb2b-a6fb-4313-a939-d7f176a7e23c
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 943.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash 7bb6737f6e8c35b233a8b1cc5e285204
7043934dff49d97b315866a281cc931e6bd0db3d
7332f514cbcf7944ea163d9c7f9dc86a83117dfd5e687a56d4fe5c6381e4c5db
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 25 Sep 2022 23:14:23 GMT
Last-Modified: Sun, 25 Sep 2022 21:56:42 GMT
Server: ECS (nyb/1D18)
X-Cache: Miss from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: XlVpGDVRr5Xx-YMZuLRHWFjaCET5qXqSgd5PV3kYn9T_Wb2yMyF_9A==
Age: 4661
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5d04731e7d05385c083d4d4a69bc885c
e9be1b168a98366bffada661dc712bbac816480f
87659ad44d0862b531d84882b8012918288ff667609dc86ce1002553f213c501
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6333
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 23:14:23 GMT
Last-Modified: Sun, 25 Sep 2022 21:28:50 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5eb63d935525c73d27fe2ccc266c1f48
933536fe9ed7dfc94cb73ace4fb905e192a268f3
267a73a91a91b8b0ca8aba627a54ee2fdbb19dcd4d8dd04ae9f3a0841fa97134
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2074
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 23:14:23 GMT
Last-Modified: Sun, 25 Sep 2022 22:39:49 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
ad.360yield.com/match?publisher_dsp_id=38&external_user_id=k-P-yo9fZ7JCeMDRS4T1MjTjV_SXKu90nXOWEB3A
3.67.253.73302 Found 0 B URL HTTP/2 ad.360yield.com/match?publisher_dsp_id=38&external_user_id=k-P-yo9fZ7JCeMDRS4T1MjTjV_SXKu90nXOWEB3A
IP 3.67.253.73:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?publisher_dsp_id=38&external_user_id=k-P-yo9fZ7JCeMDRS4T1MjTjV_SXKu90nXOWEB3A HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sun, 25 Sep 2022 23:14:23 GMT
content-type: text/plain
content-length: 0
location: https://ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-P-yo9fZ7JCeMDRS4T1MjTjV_SXKu90nXOWEB3A
set-cookie: tuuid=587474d8-2c64-438b-aa9c-2fe84009664e; Expires=Sat, 24 Dec 2022 23:14:23 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
tuuid_lu=1664147663; Expires=Sat, 24 Dec 2022 23:14:23 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2
simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-EwWUBfZ7JCeMDRS4T1MjTjV_SXL8LffAWGwjqQ
185.64.190.80200 OK 42 B URL HTTP/2 simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-EwWUBfZ7JCeMDRS4T1MjTjV_SXL8LffAWGwjqQ
IP 185.64.190.80:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-EwWUBfZ7JCeMDRS4T1MjTjV_SXL8LffAWGwjqQ HTTP/1.1
Host: simage2.pubmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 23:14:23 GMT
content-type: image/gif; charset=utf-8
content-length: 42
set-cookie: KRTBCOOKIE_97=3385-uid:k-EwWUBfZ7JCeMDRS4T1MjTjV_SXL8LffAWGwjqQ&KRTB&23144-uid:k-EwWUBfZ7JCeMDRS4T1MjTjV_SXL8LffAWGwjqQ&KRTB&23286-uid:k-EwWUBfZ7JCeMDRS4T1MjTjV_SXL8LffAWGwjqQ&KRTB&23287-uid:k-EwWUBfZ7JCeMDRS4T1MjTjV_SXL8LffAWGwjqQ; domain=pubmatic.com; secure; expires=Tue, 25-Oct-2022 23:14:23 GMT; path=/
PugT=1664147663; domain=pubmatic.com; secure; expires=Tue, 25-Oct-2022 23:14:23 GMT; path=/
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 3f78cee13e8d17769b40b2cbe2a6fc6d
8c1329fc5e7ba36c74597fecb6dafcb8ace80bf4
406c2040cf27ed0029c368f7c92b2b29c8a517379e1c602a926b50a474f0679c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 553
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 23:14:24 GMT
Last-Modified: Sun, 25 Sep 2022 23:05:11 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 312
pixel.rubiconproject.com/tap.php?v=6434&nid=2149&put=k-HcXVRPZ7JCeMDRS4T1MjTjV_SXJRj0uI3ZD3IQ&expires=30
213.19.162.80204 No Content 0 B URL HTTP/1.1 pixel.rubiconproject.com/tap.php?v=6434&nid=2149&put=k-HcXVRPZ7JCeMDRS4T1MjTjV_SXJRj0uI3ZD3IQ&expires=30
IP 213.19.162.80:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tap.php?v=6434&nid=2149&put=k-HcXVRPZ7JCeMDRS4T1MjTjV_SXJRj0uI3ZD3IQ&expires=30 HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: d0cea2fb47f5ddedaddf61763f0aedb4
Content-Type: image/gif
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2b35d21dd785c3a7346ab75c7babad3d
1da8e5bb2de50e8e777387ce0510753d68a9862b
16d894645d341bc3a2a89191cf346d26f882466e3b36e5b2254770467833bd59
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2689
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 23:14:24 GMT
Last-Modified: Sun, 25 Sep 2022 22:29:35 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-P-yo9fZ7JCeMDRS4T1MjTjV_SXKu90nXOWEB3A
3.67.253.73200 OK 43 B URL HTTP/2 ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-P-yo9fZ7JCeMDRS4T1MjTjV_SXKu90nXOWEB3A
IP 3.67.253.73:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/match?publisher_dsp_id=38&external_user_id=k-P-yo9fZ7JCeMDRS4T1MjTjV_SXKu90nXOWEB3A HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 23:14:24 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2
criteo-sync.teads.tv/um?eid=80&uid=k-1ArqwvZ7JCeMDRS4T1MjTjV_SXJDiR9yaYkZtw
23.195.255.234200 OK 23 B URL HTTP/2 criteo-sync.teads.tv/um?eid=80&uid=k-1ArqwvZ7JCeMDRS4T1MjTjV_SXJDiR9yaYkZtw
IP 23.195.255.234:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash da5b449fff36752a93779fa4067cd2eb
71a96eea77f21ab5f1819b96c4cedd5cd34476ca
328e90a318268aea96180cc31666ae6d6f79d90d078c123bc3d98ee08a192fb7
GET /um?eid=80&uid=k-1ArqwvZ7JCeMDRS4T1MjTjV_SXJDiR9yaYkZtw HTTP/1.1
Host: criteo-sync.teads.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
server: akka-http/10.2.9
content-length: 23
expires: Sun, 25 Sep 2022 23:14:24 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sun, 25 Sep 2022 23:14:24 GMT
X-Firefox-Spdy: h2
rtb-csync.smartadserver.com/redir/?partnerid=79&partneruserid=k-mE1djPZ7JCeMDRS4T1MjTjV_SXI9fd6quMKyUw
185.86.138.114404 Not Found 21 B URL HTTP/1.1 rtb-csync.smartadserver.com/redir/?partnerid=79&partneruserid=k-mE1djPZ7JCeMDRS4T1MjTjV_SXI9fd6quMKyUw
IP 185.86.138.114:0
ASN #201081 SmartAdServer SAS
File type ASCII text, with no line terminators
Hash efa6ba503d1db3c0aeb36d2dfe12081a
bcb085dea063066be3fed25872f48e310261dc8f
673c79de9e33392bc95881a3d58488cf44e0509352a299e09bf119e2b09d170a
GET /redir/?partnerid=79&partneruserid=k-mE1djPZ7JCeMDRS4T1MjTjV_SXI9fd6quMKyUw HTTP/1.1
Host: rtb-csync.smartadserver.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
date: Sun, 25 Sep 2022 23:14:24 GMT
content-length: 21
content-type: text/plain; charset=utf-8
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 6fe79ba72a558da210d1a9e6bc452721
1fdb8a8c04d463569f701cd49aab64b30e9423fa
736525326c32eab9d161abd3f2b12e4cfb66e532970ed1cec1ca6a9191c3265b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4636
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 23:14:24 GMT
Last-Modified: Sun, 25 Sep 2022 21:57:08 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
ad.yieldlab.net/m?dm_id=8666&ext_id=k-rYX_C_Z7JCeMDRS4T1MjTjV_SXJze1jwQWuQbA
23.13.245.180204 No Content 0 B URL HTTP/1.1 ad.yieldlab.net/m?dm_id=8666&ext_id=k-rYX_C_Z7JCeMDRS4T1MjTjV_SXJze1jwQWuQbA
IP 23.13.245.180:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /m?dm_id=8666&ext_id=k-rYX_C_Z7JCeMDRS4T1MjTjV_SXJze1jwQWuQbA HTTP/1.1
Host: ad.yieldlab.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
x-application-context: application
Cache-Control: no-store,no-cache,max-age=-3600,must-revalidate,post-check=0,pre-check=0
Pragma: no-cache
Expires: Sat, 24 Sep 2022 23:14:24 GMT
Date: Sun, 25 Sep 2022 23:14:24 GMT
Connection: keep-alive
Set-Cookie: id=fa88ecdd-d99f-4e62-a11d-f5c08c4920bf; Path=/; Domain=yieldlab.net; Expires=Mon, 25-Sep-2023 23:14:24 GMT; Max-Age=31536000; Secure; SameSite=None
dpm.demdex.net/ibs:dpid=28645&dpuuid=
34.252.39.216302 Found 0 B URL HTTP/1.1 dpm.demdex.net/ibs:dpid=28645&dpuuid=
IP 34.252.39.216:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ibs:dpid=28645&dpuuid= HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
DCS: dcs-prod-irl1-2-v042-06e04d3ea.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Location: https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=46782409343438194432514390814640380690; Max-Age=15552000; Expires=Fri, 24 Mar 2023 23:14:24 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-TID: /pCHpjW3TpA=
Content-Length: 0
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1376ef337d0638160e5393cbb3db38ca
b8857210b863d1b0049e59c2847459925a4e49d6
fae85b04348d3f75536accd1b8ef187fc86d2824eac6b23756c4e7085901095c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1555
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 23:14:24 GMT
Last-Modified: Sun, 25 Sep 2022 22:48:29 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 925dcfd890f0fc22ebce6e43cc497ecd
1d756347443f7bf74cbe47b8f4f3a7f011f34a6a
e7b0dd7394e21b78df7c84eef61e0dd3ca0811a470c06d594cd93f080dabc580
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 23:14:24 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 24 Sep 2022 01:56:49 GMT
Expires: Sat, 01 Oct 2022 01:56:48 GMT
Etag: "1d756347443f7bf74cbe47b8f4f3a7f011f34a6a"
Cache-Control: max-age=441143,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 750774b33be1b500-OSL
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash 4e95a5ef9cea692769875efb7acb535e
c2bdcd2df16aa99dcaf74703dda63f2ddb1acb63
e67fe6f2a6bf8033c54e1c9be8f1cd954d6390d337527ddf82aa9f975c027f1f
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 25 Sep 2022 23:14:24 GMT
Last-Modified: Sun, 25 Sep 2022 21:51:34 GMT
Server: ECS (nyb/1D1C)
X-Cache: Miss from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: eC68HMDgBIahHzKqLfL1XTdwqluInbuTyn24IZRlf3U2jc9eW6Zazg==
Age: 4970
ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-29rLKvZ7JCeMDRS4T1MjTjV_SXLqKL3gxNH6Ag
3.126.56.137302 Found 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-29rLKvZ7JCeMDRS4T1MjTjV_SXLqKL3gxNH6Ag
IP 3.126.56.137:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58301/sync?_origin=1&uid=k-29rLKvZ7JCeMDRS4T1MjTjV_SXLqKL3gxNH6Ag HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sun, 25 Sep 2022 23:14:24 GMT
content-length: 0
strict-transport-security: max-age=31536000
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
location: https://ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-29rLKvZ7JCeMDRS4T1MjTjV_SXLqKL3gxNH6Ag&verify=true
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBNDgMGMCEEmVYL7d5nTfKXuuW5QJBjQFEgEBAQEyMmM6YwAAAAAA_eMAAA&S=AQAAAvSMNQJAGdi-f6UusiKJevI; Expires=Tue, 26 Sep 2023 05:14:24 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
cm.adform.net/pixel?adform_pid=15&adform_pc=k-9duvmfZ7JCeMDRS4T1MjTjV_SXLfgu9pr5e9-A
37.157.6.248200 OK 43 B URL HTTP/2 cm.adform.net/pixel?adform_pid=15&adform_pc=k-9duvmfZ7JCeMDRS4T1MjTjV_SXLfgu9pr5e9-A
IP 37.157.6.248:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /pixel?adform_pid=15&adform_pc=k-9duvmfZ7JCeMDRS4T1MjTjV_SXLfgu9pr5e9-A HTTP/1.1
Host: cm.adform.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 23:14:24 GMT
content-type: image/gif
content-length: 43
last-modified: Tue, 12 Jul 2016 13:47:50 GMT
etag: "5784f506-2b"
accept-ranges: bytes
X-Firefox-Spdy: h2
x.bidswitch.net/sync?dsp_id=46&user_id=k-6RDYkvZ7JCeMDRS4T1MjTjV_SXJ4X0NFRYQsNg&expires=30
3.124.238.184302 Moved Temporarily 0 B URL HTTP/1.1 x.bidswitch.net/sync?dsp_id=46&user_id=k-6RDYkvZ7JCeMDRS4T1MjTjV_SXJ4X0NFRYQsNg&expires=30
IP 3.124.238.184:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?dsp_id=46&user_id=k-6RDYkvZ7JCeMDRS4T1MjTjV_SXJ4X0NFRYQsNg&expires=30 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Sun, 25 Sep 2022 23:14:24 GMT
Location: https://x.bidswitch.net/ul_cb/sync?dsp_id=46&user_id=k-6RDYkvZ7JCeMDRS4T1MjTjV_SXJ4X0NFRYQsNg&expires=30
Set-Cookie: tuuid=1f936f08-0ae5-4ff0-8650-c6c4de1c6ea9; path=/; expires=Mon, 25-Sep-2023 23:14:24 GMT; domain=.bidswitch.net; samesite=none; secure
c=1664147664; path=/; expires=Mon, 25-Sep-2023 23:14:24 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1664147664; path=/; expires=Mon, 25-Sep-2023 23:14:24 GMT; domain=.bidswitch.net; samesite=none; secure
c=1664147664; path=/; expires=Mon, 25-Sep-2023 23:14:24 GMT; domain=.bidswitch.net; samesite=none; secure
Content-Length: 0
Connection: keep-alive
dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
34.252.39.216200 OK 59 B URL HTTP/1.1 dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
IP 34.252.39.216:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 1251cd5e5c2def4c046309375f87c1c1
e02d6b0c6a5c495c15985e2832e335eda8528c80
4e7010cc46fa361c88e57e3346d27421cf3b8a8bf5f39b43fc45997c60cb1c13
GET /demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid= HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: image/gif
DCS: dcs-prod-irl1-2-v042-03d769131.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-TID: TyoKZxE/Ty4=
Content-Length: 59
Connection: keep-alive
status.thawte.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 183bb1d95d5f9d2f92660bb80c38143c
76d3028cab692ee9bba86ff3c41d6e65c19ae9bb
22b15b9cacbe432e9199a82ea9b649f63d6550b6bccca3e711ec18d1ec061642
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6362
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 23:14:24 GMT
Last-Modified: Sun, 25 Sep 2022 21:28:22 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
match.sharethrough.com/sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-biOOgfZ7JCeMDRS4T1MjTjV_SXIA1sdVj63hFg
52.29.139.35204 No Content 0 B URL HTTP/2 match.sharethrough.com/sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-biOOgfZ7JCeMDRS4T1MjTjV_SXIA1sdVj63hFg
IP 52.29.139.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-biOOgfZ7JCeMDRS4T1MjTjV_SXIA1sdVj63hFg HTTP/1.1
Host: match.sharethrough.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sun, 25 Sep 2022 23:14:24 GMT
X-Firefox-Spdy: h2
dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
178.250.0.163200 OK 43 B URL HTTP/2 dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
IP 178.250.0.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /dis/rtb/appnexus/cookiematch.aspx?appnxsid=0 HTTP/1.1
Host: dis.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 23:14:23 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP='NON DSP COR CURa PSA PSD OUR BUS NAV STA'
timing-allow-origin: *
server-processing-duration-in-ticks: 252513
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40
178.250.0.157302 Found 0 B URL HTTP/2 gum.criteo.com/sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40
IP 178.250.0.157:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Sun, 25 Sep 2022 23:14:23 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://beacon.krxd.net/usermatch.gif?partner=criteo&partner_uid=
server-processing-duration-in-ticks: 582311
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash 40019f714d3cf5cd682f0047a4a89604
3c10d323136756905fdda49fbe3c6660c759fa2a
52dbdee48984657fac707b80437393935b7c4cc396596ab3312b8a179390dfc3
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 25 Sep 2022 23:14:24 GMT
Last-Modified: Sun, 25 Sep 2022 22:07:46 GMT
Server: ECS (nyb/1D24)
X-Cache: Miss from cloudfront
Via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: XTMtMMbtb5rEUN4Cxrtt4fzTgY2BKm4dd6oDE5FjmSUvVYytO1hgtQ==
Age: 3998
ad.yieldlab.net/m?dt_id=8664&ext_id=k-rYX_C_Z7JCeMDRS4T1MjTjV_SXJze1jwQWuQbA
23.13.245.180204 No Content 0 B URL HTTP/1.1 ad.yieldlab.net/m?dt_id=8664&ext_id=k-rYX_C_Z7JCeMDRS4T1MjTjV_SXJze1jwQWuQbA
IP 23.13.245.180:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /m?dt_id=8664&ext_id=k-rYX_C_Z7JCeMDRS4T1MjTjV_SXJze1jwQWuQbA HTTP/1.1
Host: ad.yieldlab.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
x-application-context: application
Cache-Control: no-store,no-cache,max-age=-3600,must-revalidate,post-check=0,pre-check=0
Pragma: no-cache
Expires: Sat, 24 Sep 2022 23:14:24 GMT
Date: Sun, 25 Sep 2022 23:14:24 GMT
Connection: keep-alive
Set-Cookie: id=32ebf72d-8ea9-4676-b4d9-b4a09624b43b; Path=/; Domain=yieldlab.net; Expires=Mon, 25-Sep-2023 23:14:24 GMT; Max-Age=31536000; Secure; SameSite=None
x.bidswitch.net/ul_cb/sync?dsp_id=46&user_id=k-6RDYkvZ7JCeMDRS4T1MjTjV_SXJ4X0NFRYQsNg&expires=30
3.124.238.184200 OK 43 B URL HTTP/1.1 x.bidswitch.net/ul_cb/sync?dsp_id=46&user_id=k-6RDYkvZ7JCeMDRS4T1MjTjV_SXJ4X0NFRYQsNg&expires=30
IP 3.124.238.184:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/sync?dsp_id=46&user_id=k-6RDYkvZ7JCeMDRS4T1MjTjV_SXJ4X0NFRYQsNg&expires=30 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store, must-revalidate
Content-Type: image/gif
Date: Sun, 25 Sep 2022 23:14:24 GMT
Content-Length: 43
Connection: keep-alive
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 4198fa094a76094df485c9e89231f691
856785aae5adf63dc734f076be4dcf74b53a292d
de133db7a975e49b2e3e4a6cfd324a07b6678cf1e9fe178ed9368d606f614d70
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 23:14:24 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 24 Sep 2022 15:11:55 GMT
Expires: Sat, 01 Oct 2022 15:11:54 GMT
Etag: "856785aae5adf63dc734f076be4dcf74b53a292d"
Cache-Control: max-age=488849,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 750774b4ccf0b500-OSL
eb2.3lift.com/xuid?mid=2711&xuid=k-4IFfVvZ7JCeMDRS4T1MjTjV_SXI0-tdH1DaXcg&dongle=013b
76.223.111.18200 OK 37 B URL HTTP/2 eb2.3lift.com/xuid?mid=2711&xuid=k-4IFfVvZ7JCeMDRS4T1MjTjV_SXI0-tdH1DaXcg&dongle=013b
IP 76.223.111.18:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 3eacd0132310ea44cad756b378a3bc07
e2216a7e9b73f5cb0279351c78ce61c33475cea7
bb229a48bee31f5d54ca12dc9bd960c63a671f0d4be86a054c1d324a44499d96
GET /xuid?mid=2711&xuid=k-4IFfVvZ7JCeMDRS4T1MjTjV_SXI0-tdH1DaXcg&dongle=013b HTTP/1.1
Host: eb2.3lift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 25 Sep 2022 23:14:24 GMT
content-type: image/gif
content-length: 37
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash beab72de9f58af97f41bed80c74507f5
ccf1e1b52091553839738f2a696d338943f5afe3
ee0aad405b549d7fe0068d5425db919304275a63102456e8040989ab6fc8d940
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 25 Sep 2022 23:14:24 GMT
Last-Modified: Sun, 25 Sep 2022 22:02:30 GMT
Server: ECS (nyb/1D1F)
X-Cache: Miss from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: XWPZy2mB22lxrbYvjcDDEmb0e3kBE2JtFwFNBCu4hXBO_3aBjp8dxQ==
Age: 4314
sync.outbrain.com/cookie-sync?p=criteo&uid=k-oXf1-PZ7JCeMDRS4T1MjTjV_SXLSektisyTMrA
70.42.32.159200 OK 0 B URL HTTP/1.1 sync.outbrain.com/cookie-sync?p=criteo&uid=k-oXf1-PZ7JCeMDRS4T1MjTjV_SXLSektisyTMrA
IP 70.42.32.159:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cookie-sync?p=criteo&uid=k-oXf1-PZ7JCeMDRS4T1MjTjV_SXLSektisyTMrA HTTP/1.1
Host: sync.outbrain.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 23:14:24 GMT
Content-Length: 0
Cache-Control: no-cache
X-TraceId: 527934d91c8535d984f9815002cd6376
visitor.omnitagjs.com/visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-pRp1OPZ7JCeMDRS4T1MjTjV_SXIYxPnHPwfbjQ
185.255.84.153200 OK 49 B URL HTTP/2 visitor.omnitagjs.com/visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-pRp1OPZ7JCeMDRS4T1MjTjV_SXIYxPnHPwfbjQ
IP 185.255.84.153:0
ASN #200271 Iguane Solutions SAS
File type GIF image data, version 89a, 1 x 1\012- data
Hash 4408efc0174f07ad685c456f1de521ca
e3bc3250f8f32bd98dc7b05fd8940b74617eb8d1
d1371feb0512d700cf724b05a588ce79f8d8dfbb0991ae5f45ecd3ab08983a38
GET /visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-pRp1OPZ7JCeMDRS4T1MjTjV_SXIYxPnHPwfbjQ HTTP/1.1
Host: visitor.omnitagjs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
expires: 0
p3p: CP="CAO PSA OUR"
pragma: no-cache
set-cookie: ayl_visitor=2df360d6b69f6184eeb19cfd7740734b; Path=/; Domain=omnitagjs.com; Max-Age=2592000; Secure; SameSite=None
vary: Accept-Encoding
x-content-type-options: nosniff
date: Sun, 25 Sep 2022 23:14:23 GMT
content-length: 49
x-envoy-upstream-service-time: 5
server: ayl-lb-fra02
X-Firefox-Spdy: h2
ad.yieldlab.net/m?dt_id=12438557&ext_id=k-rYX_C_Z7JCeMDRS4T1MjTjV_SXJze1jwQWuQbA
23.13.245.180204 No Content 0 B URL HTTP/1.1 ad.yieldlab.net/m?dt_id=12438557&ext_id=k-rYX_C_Z7JCeMDRS4T1MjTjV_SXJze1jwQWuQbA
IP 23.13.245.180:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /m?dt_id=12438557&ext_id=k-rYX_C_Z7JCeMDRS4T1MjTjV_SXJze1jwQWuQbA HTTP/1.1
Host: ad.yieldlab.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
x-application-context: application
Cache-Control: no-store,no-cache,max-age=-3600,must-revalidate,post-check=0,pre-check=0
Pragma: no-cache
Expires: Sat, 24 Sep 2022 23:14:24 GMT
Date: Sun, 25 Sep 2022 23:14:24 GMT
Connection: keep-alive
Set-Cookie: id=b13052a2-c8b4-44ce-9575-dd5ddd13ccfe; Path=/; Domain=yieldlab.net; Expires=Mon, 25-Sep-2023 23:14:24 GMT; Max-Age=31536000; Secure; SameSite=None
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5a6523225dc7ac830faca26492f48ca8
848bc1a13c50d15ca674225af2e189ac7a9cf041
a5a13f70ea9cf56156c6de36f6189e88eaef1d49e54c638d5000ad40bb345563
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5932
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 23:14:24 GMT
Last-Modified: Sun, 25 Sep 2022 21:35:32 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
sync-criteo.ads.yieldmo.com/sync?id=k-DLCgkPZ7JCeMDRS4T1MjTjV_SXLTa3ITeEHR3A&pn_id=criteo&ext=1
34.253.98.74200 OK 43 B URL HTTP/2 sync-criteo.ads.yieldmo.com/sync?id=k-DLCgkPZ7JCeMDRS4T1MjTjV_SXLTa3ITeEHR3A&pn_id=criteo&ext=1
IP 34.253.98.74:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /sync?id=k-DLCgkPZ7JCeMDRS4T1MjTjV_SXLTa3ITeEHR3A&pn_id=criteo&ext=1 HTTP/1.1
Host: sync-criteo.ads.yieldmo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 25 Sep 2022 23:14:24 GMT
content-type: image/gif
content-length: 43
set-cookie: yieldmo_id=g1894e5bf13599f3589c%7C1664147664218%7C0%7C; Domain=.yieldmo.com; Expires=Mon, 25-Sep-2023 23:14:24 GMT; Path=/; Secure; SameSite=None; Secure
ptrcriteo=k-DLCgkPZ7JCeMDRS4T1MjTjV_SXLTa3ITeEHR3A; Domain=ads.yieldmo.com; Expires=Mon, 25-Sep-2023 23:14:24 GMT; Path=/; Secure; SameSite=None; Secure
access-control-allow-origin: *
access-control-request-headers: Cache-Control, Pragma
access-control-allow-methods: GET, OPTIONS
pragma: no-cache
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash c0ba6024bb34f1ee6b54287fa57f2355
f3165e365625e068f19bf0a89f4985a044127a38
767b6b8634e2088da24aba70dcc16a58efe33244b3bd636e3d778c44164d6b4a
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 25 Sep 2022 23:14:24 GMT
Last-Modified: Sun, 25 Sep 2022 21:35:54 GMT
Server: ECS (nyb/1D1A)
X-Cache: Miss from cloudfront
Via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: KuGnMVdZC3F1-2frNqdhjt7mTY-2ggWAh1W8U2SMrUYsylyuFIfeTA==
Age: 5910
beacon.krxd.net/usermatch.gif?partner=criteo&partner_uid=
108.128.241.23204 No Content 0 B URL HTTP/2 beacon.krxd.net/usermatch.gif?partner=criteo&partner_uid=
IP 108.128.241.23:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usermatch.gif?partner=criteo&partner_uid= HTTP/1.1
Host: beacon.krxd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sun, 25 Sep 2022 23:14:24 GMT
set-cookie: _kuid_=PGdkj4zg; Expires=Fri, 24-Mar-23 23:14:24 GMT; Max-Age=15552000; Domain=.krxd.net; Path=/
cache-control: private, no-cache, no-store
p3p: policyref="https://cdn.krxd.net/kruxcontent/p3p.xml", CP="NON DSP COR NID OUR DEL SAM OTR UNR COM NAV INT DEM CNT STA PRE LOC OTC"
x-served-by: beacon-n018-dub-prod.krxd.net
x-request-time: D=27 t=1664147664
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40
178.250.0.157302 Found 0 B URL HTTP/2 gum.criteo.com/sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40
IP 178.250.0.157:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Sun, 25 Sep 2022 23:14:24 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://s.thebrighttag.com/cs?btt=0&tp=cr&uid=
server-processing-duration-in-ticks: 429627
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash 1c84ca55640d4045027695f8a969ebfe
eee3f0eb314dbe6681675b2dac622b4c48ca2818
942bddecc246ff357ec55aafbd0e8641bc4d656e99842226c68d6e9dcaee0d01
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "942BDDECC246FF357EC55AAFBD0E8641BC4D656E99842226C68D6E9DCAEE0D01"
Last-Modified: Sun, 25 Sep 2022 20:00:00 UTC
Content-Length: 1586
Cache-Control: public, no-transform, must-revalidate, max-age=1727
Expires: Sun, 25 Sep 2022 23:43:11 GMT
Date: Sun, 25 Sep 2022 23:14:24 GMT
Connection: keep-alive
s.thebrighttag.com/cs?btt=0&tp=cr&uid=
3.143.128.248200 OK 35 B URL HTTP/2 s.thebrighttag.com/cs?btt=0&tp=cr&uid=
IP 3.143.128.248:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /cs?btt=0&tp=cr&uid= HTTP/1.1
Host: s.thebrighttag.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 25 Sep 2022 23:14:24 GMT
content-type: image/gif
content-length: 35
x-bt-requestid: cb9916e0-3d27-11ed-95e6-0000ac1702ae
cache-control: private, must-revalidate
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin:
server: nginx
p3p: CP=NOI DSP COR NID
X-Firefox-Spdy: h2
dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-FydOQfZ7JCeMDRS4T1MjTjV_SXLwQ0rDov0h3g&google_error=3
178.250.0.163200 OK 0 B URL HTTP/2 dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-FydOQfZ7JCeMDRS4T1MjTjV_SXLwQ0rDov0h3g&google_error=3
IP 178.250.0.163:0
GET /dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-FydOQfZ7JCeMDRS4T1MjTjV_SXLwQ0rDov0h3g&google_error=3 HTTP/1.1
Host: dis.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 23:14:23 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP='NON DSP COR CURa PSA PSD OUR BUS NAV STA'
timing-allow-origin: *
server-processing-duration-in-ticks: 163527
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
www.brandbucket.com/images2/nice_bk3_thumb.jpg
104.22.7.216200 OK 0 B URL HTTP/2 www.brandbucket.com/images2/nice_bk3_thumb.jpg
IP 104.22.7.216:0
GET /images2/nice_bk3_thumb.jpg HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/altostima?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=kepo6ecug62k16e09he9momal2; land_URL=1664147659%3B%2Fnames%2Faltostima%3Fsource%3Dext; land_referrer=1664147659%3B; bb_recent=355890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 23:14:19 GMT
content-type: image/jpeg
content-length: 6202
cf-bgj: imgq:100,h2pri
cf-polished: origSize=16805
etag: "5ee1f392-41a5"
last-modified: Thu, 11 Jun 2020 09:04:18 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 1319
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7507749a29d3b51e-OSL
X-Firefox-Spdy: h2
www.brandbucket.com/favicon.ico
104.22.7.216200 OK 0 B URL HTTP/2 www.brandbucket.com/favicon.ico
IP 104.22.7.216:0
GET /favicon.ico HTTP/1.1
Host: www.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/names/altostima?source=ext
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA; PHPSESSID=kepo6ecug62k16e09he9momal2; land_URL=1664147659%3B%2Fnames%2Faltostima%3Fsource%3Dext; land_referrer=1664147659%3B; bb_recent=355890
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 23:14:20 GMT
content-type: text/html
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cache-control: max-age=691200
cf-cache-status: HIT
age: 1318
last-modified: Sun, 25 Sep 2022 22:52:22 GMT
server: cloudflare
cf-ray: 7507749baae4b51e-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
js.hs-scripts.com/20882931.js
104.17.213.204200 OK 0 B URL HTTP/2 js.hs-scripts.com/20882931.js
IP 104.17.213.204:0
GET /20882931.js HTTP/1.1
Host: js.hs-scripts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 25 Sep 2022 23:14:22 GMT
content-type: application/javascript;charset=utf-8
access-control-allow-credentials: true
access-control-allow-origin: https://www.brandbucket.com
access-control-max-age: 3600
cache-control: public, max-age=60
cf-bgj: minify
cf-polished: origSize=1458
vary: Accept-Encoding
x-hubspot-correlation-id: 9d21823d-9ba1-4187-b1e4-e4774ad0dc60
x-trace: 2B834EEA9936C04E7712984D1EED5B2B86F5F4CB33000000000000000000
last-modified: Sun, 25 Sep 2022 23:13:49 GMT
cf-cache-status: HIT
expires: Sun, 25 Sep 2022 23:15:22 GMT
server: cloudflare
cf-ray: 750774a99dc30b69-OSL
content-encoding: br
X-Firefox-Spdy: h2
dynamic.criteo.com/js/ld/ld.js?a=23078
178.250.2.140200 OK 0 B URL HTTP/2 dynamic.criteo.com/js/ld/ld.js?a=23078
IP 178.250.2.140:0
GET /js/ld/ld.js?a=23078 HTTP/1.1
Host: dynamic.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 25 Sep 2022 23:14:22 GMT
content-type: application/javascript; charset=utf-8
server: Kestrel
cache-control: public,max-age=10800
content-encoding: br
vary: Origin, Accept-Encoding
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
sync-t1.taboola.com/sg/criteortb-network/1/rtb-h/?taboola_hm=k-BPDAHfZ7JCeMDRS4T1MjTjV_SXLolzX8BfP-ow
141.226.228.48200 OK 0 B URL HTTP/2 sync-t1.taboola.com/sg/criteortb-network/1/rtb-h/?taboola_hm=k-BPDAHfZ7JCeMDRS4T1MjTjV_SXLolzX8BfP-ow
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
GET /sg/criteortb-network/1/rtb-h/?taboola_hm=k-BPDAHfZ7JCeMDRS4T1MjTjV_SXLolzX8BfP-ow HTTP/1.1
Host: sync-t1.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 23:14:24 GMT
x-fastly-to-nlb-rtt: 22811
access-control-allow-credentials: true
X-Firefox-Spdy: h2
exchange.mediavine.com/usersync/push?partner=criteo&partnerId=k-CXc03fZ7JCeMDRS4T1MjTjV_SXKELsBCB36e4BmF8rFRnb5e
52.57.198.70200 OK 0 B URL HTTP/2 exchange.mediavine.com/usersync/push?partner=criteo&partnerId=k-CXc03fZ7JCeMDRS4T1MjTjV_SXKELsBCB36e4BmF8rFRnb5e
IP 52.57.198.70:0
GET /usersync/push?partner=criteo&partnerId=k-CXc03fZ7JCeMDRS4T1MjTjV_SXKELsBCB36e4BmF8rFRnb5e HTTP/1.1
Host: exchange.mediavine.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 25 Sep 2022 23:14:23 GMT
content-type: text/html; charset=utf-8
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
cache-control: private, no-cache
set-cookie: mv_tokens=%7B%22mv_uuid%22%3A%22cb182710-3d27-11ed-99aa-49ff6b9980cd%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Sun, 09 Oct 2022 23:14:23 GMT; Secure; SameSite=None
mv_tokens_eu-v1=%7B%22mv_uuid%22%3A%22cb182710-3d27-11ed-99aa-49ff6b9980cd%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Sun, 09 Oct 2022 23:14:23 GMT; Secure; SameSite=None
am_tokens=%7B%22mv_uuid%22%3A%22cb182710-3d27-11ed-99aa-49ff6b9980cd%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Sun, 09 Oct 2022 23:14:23 GMT; Secure; SameSite=None
am_tokens_eu-v1=%7B%22mv_uuid%22%3A%22cb182710-3d27-11ed-99aa-49ff6b9980cd%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Sun, 09 Oct 2022 23:14:23 GMT; Secure; SameSite=None
criteo=%7B%22id%22%3A%22k-CXc03fZ7JCeMDRS4T1MjTjV_SXKELsBCB36e4BmF8rFRnb5e%22%2C%22version%22%3A%22criteo%22%7D; Path=/; Expires=Sun, 09 Oct 2022 23:14:23 GMT; Secure; SameSite=None
content-encoding: gzip
X-Firefox-Spdy: h2
amp.brandbucket.com/amp/tracking/names/altostima?source=ext&ext=355890&source=ext
104.22.7.216302 Found 0 B URL HTTP/2 amp.brandbucket.com/amp/tracking/names/altostima?source=ext&ext=355890&source=ext
IP 104.22.7.216:0
GET /amp/tracking/names/altostima?source=ext&ext=355890&source=ext HTTP/1.1
Host: amp.brandbucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Cookie: _ga=amp-7tbZo5Aytjy_QZMlOmpIOQ; _uetvid=a70dab60e55711ecad10f9ba179de29e; __hstc=96751872.425fa7c621c8bf293e5e35bfc5e84976.1654492517646.1654492517646.1654492517646.1; hubspotutk=425fa7c621c8bf293e5e35bfc5e84976; cto_bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 302 Found
date: Sun, 25 Sep 2022 23:14:22 GMT
content-type: text/html
location: https://www.brandbucket.com/amp/tracking/names/altostima?source=ext&ext=355890&source=ext
strict-transport-security: max-age=63072000; includeSubDomains; preload; always;
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 750774a36827b51e-OSL
X-Firefox-Spdy: h2
js.hs-analytics.net/analytics/1664147400000/20882931.js
104.17.71.176200 OK 0 B URL HTTP/2 js.hs-analytics.net/analytics/1664147400000/20882931.js
IP 104.17.71.176:0
GET /analytics/1664147400000/20882931.js HTTP/1.1
Host: js.hs-analytics.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.brandbucket.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 25 Sep 2022 23:14:22 GMT
content-type: text/javascript
x-amz-id-2: WQIGw2sG3FHzxjeH5gY5iiXxNJJa90CJuInvrn2s5pVr8vZp1UVvND8RyifDACwdpPsMyHCNcHg=
x-amz-request-id: VD6TQRPGA9EFQCG2
last-modified: Wed, 31 Aug 2022 14:06:50 GMT
etag: W/"ae2f524bc295017dee70bb69092256ec"
x-amz-server-side-encryption: AES256
cache-control: max-age=300, public
x-amz-version-id: null
access-control-allow-credentials: false
expires: Sun, 25 Sep 2022 23:18:52 GMT
cf-cache-status: HIT
vary: Accept-Encoding
server: cloudflare
cf-ray: 750774abaec9b500-OSL
content-encoding: br
X-Firefox-Spdy: h2
gum.criteo.com/sid/json?origin=onetag&domain=brandbucket.com&sn=FirefoxSyncframe&so=1&topUrl=www.brandbucket.com&bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA&info=iI1YCl80M0RITmhlJTJCZkMwOUJGQlhaMUN2czFXbXJPZXRSJTJGYXR6Wm5sVSUyRjMlMkIyWExKeiUyQk9NRmdvUEo0VmdTNndPbWFQOA&idsd=-2100343610,969857499&cw=1&lsw=1
178.250.0.157200 OK 0 B URL HTTP/2 gum.criteo.com/sid/json?origin=onetag&domain=brandbucket.com&sn=FirefoxSyncframe&so=1&topUrl=www.brandbucket.com&bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA&info=iI1YCl80M0RITmhlJTJCZkMwOUJGQlhaMUN2czFXbXJPZXRSJTJGYXR6Wm5sVSUyRjMlMkIyWExKeiUyQk9NRmdvUEo0VmdTNndPbWFQOA&idsd=-2100343610,969857499&cw=1&lsw=1
IP 178.250.0.157:0
GET /sid/json?origin=onetag&domain=brandbucket.com&sn=FirefoxSyncframe&so=1&topUrl=www.brandbucket.com&bundle=HIQln19mUDNIajlVMiUyRmYzSVQlMkI0c1p6OEVmaHUyN2U3M1JDeGpZbmNqQzRkUFdodkx4S3lJOW5IMGFMJTJGdmpCekclMkJFbk94TjA1dFRhZ0ElMkI3akx1RUFtTEJPZzZudkgxY3JFTktFRW45STI1WjRHN2lYSCUyQlElMkJKNHVPdmZMV2lETndORXhtRjlOajV0QTJHV0llNkNOb1BmdWt3QSUzRCUzRA&info=iI1YCl80M0RITmhlJTJCZkMwOUJGQlhaMUN2czFXbXJPZXRSJTJGYXR6Wm5sVSUyRjMlMkIyWExKeiUyQk9NRmdvUEo0VmdTNndPbWFQOA&idsd=-2100343610,969857499&cw=1&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/syncframe?topUrl=www.brandbucket.com&origin=onetag
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 23:14:22 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
server-processing-duration-in-ticks: 1336682
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
criteo-partners.tremorhub.com/sync?UICR=k-M6jT_PZ7JCeMDRS4T1MjTjV_SXJcW33Kyz9nuQ
3.227.90.123200 OK 0 B URL HTTP/2 criteo-partners.tremorhub.com/sync?UICR=k-M6jT_PZ7JCeMDRS4T1MjTjV_SXJcW33Kyz9nuQ
IP 3.227.90.123:0
GET /sync?UICR=k-M6jT_PZ7JCeMDRS4T1MjTjV_SXJcW33Kyz9nuQ HTTP/1.1
Host: criteo-partners.tremorhub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 25 Sep 2022 23:14:24 GMT
content-type: image/gif
server: Apache-Coyote/1.1
p3p: CP='This is not a P3P policy. See https://telaria.com/privacy-policy/'
X-Firefox-Spdy: h2