r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a26d0784548ecab22f417f3d689daf23
8893b79366bbadeb5c8d587b8f023e310694df1c
35baaae7b3ce3110ebb2b075881cfab55ecf3eab57d834283fd18ac691b41fa2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35BAAAE7B3CE3110EBB2B075881CFAB55ECF3EAB57D834283FD18AC691B41FA2"
Last-Modified: Tue, 20 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11942
Expires: Thu, 22 Sep 2022 21:28:15 GMT
Date: Thu, 22 Sep 2022 18:09:13 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 1b3053fa528e28810f8a2cc9284cc921
cca9eb471d941881a6b9a1793aecb6c281908f6a
a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 22 Sep 2022 17:14:02 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 9pbBd_bEl3KKBkwmNL4wl82KIyPl8ZoSBM_240uCIHe6jRu8xI15MQ==
Age: 3311
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.25200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.25:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Thu, 22 Sep 2022 04:35:15 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 6XxcBW70rvg850rcN0TB9Q4GhMTiCTVT7Qo7mCeF-U7fdAo4837l4w==
age: 48839
X-Firefox-Spdy: h2
www.customink.com/
54.230.111.83301 Moved Permanently 134 B IP 54.230.111.83:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4aa7a432bb447f094408f1bd6229c605
1965c4952cc8c082a6307ed67061a57aab6632fa
34ccdc351dc93dbf30a8630521968421091e3ed19c31a16e32c2eabb55c6a73a
GET / HTTP/1.1
Host: www.customink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
Content-Length: 134
Connection: keep-alive
Server: awselb/2.0
Date: Thu, 22 Sep 2022 18:09:13 GMT
Location: https://www.customink.com:443/
X-Cache: Miss from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: g8U1QWOc5xN5gZPNdtfZA5sZM5_vWAwxie3L7DqjmU1Jt_RfHrfcCA==
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 22 Sep 2022 18:09:13 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 05bb2042593628aaa47f4c60ae020752
6018898ffc23e09d0ac4481c214b3633d586605f
cdc19d16cda4ffb7ec5ad46d9c61f0db8c8b836bec04d81351bebb530565d1ac
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 22 Sep 2022 18:09:13 GMT
Last-Modified: Thu, 22 Sep 2022 16:28:44 GMT
Server: ECS (bsa/EB13)
X-Cache: Miss from cloudfront
Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: crTnkFZs4tOqTl_udOz01Elc3JSJgoIWqRUK6zA7Mmyw_p_De99juQ==
Age: 6029
www.customink.com/assets/site_content/pages/home/rotator/svg/t-shirts-for-your-crew-blue-c049f7f5d8cdc63878549a8972d71a25cacb128d318133194af6c4154862ebcd.svg
54.230.111.26200 OK 18 kB URL HTTP/2 www.customink.com/assets/site_content/pages/home/rotator/svg/t-shirts-for-your-crew-blue-c049f7f5d8cdc63878549a8972d71a25cacb128d318133194af6c4154862ebcd.svg
IP 54.230.111.26:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (6013)
Hash d6ed3b8dafbd5a76a09f7c41860935e7
48ec0302b041c6b7e9f077c9bc197a4a173f0131
c049f7f5d8cdc63878549a8972d71a25cacb128d318133194af6c4154862ebcd
GET /assets/site_content/pages/home/rotator/svg/t-shirts-for-your-crew-blue-c049f7f5d8cdc63878549a8972d71a25cacb128d318133194af6c4154862ebcd.svg HTTP/1.1
Host: www.customink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 18180
date: Wed, 07 Sep 2022 06:36:26 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 01 Sep 2022 16:43:52 GMT
server: nginx
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: YuRMIxqBV3ZzNQMI-OpsjkdCqIDYlBXCSp6Lju4HK2VOOaMFNf0luA==
age: 1337567
X-Firefox-Spdy: h2
www.customink.com/assets-inkpress/style_bitz/style_bitz-30c5ef7f22627e3f64d1d5f0dfad2871544c8381.css
54.230.111.26200 OK 23 kB URL HTTP/2 www.customink.com/assets-inkpress/style_bitz/style_bitz-30c5ef7f22627e3f64d1d5f0dfad2871544c8381.css
IP 54.230.111.26:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 4a3da809d0edd26bff99ed0ed4f15600
2736e6aee8f74cfa9dda5f0d699b981ef5ffe8a7
474713384d6c9cb17d7f3069f7d34c36c3eab3d256521a13cad4fe337f21d822
GET /assets-inkpress/style_bitz/style_bitz-30c5ef7f22627e3f64d1d5f0dfad2871544c8381.css HTTP/1.1
Host: www.customink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 23170
date: Sat, 10 Sep 2022 16:18:34 GMT
cache-control: public, max-age=31536000
content-encoding: gzip
last-modified: Thu, 01 Sep 2022 16:26:23 GMT
server: nginx
vary: Accept-Encoding,Origin
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: pe0j8xeTk_CXb_KnwF10IuF8cFZoPPlo2O1IK4v_8r7hOLhZDFNtsQ==
age: 1043439
X-Firefox-Spdy: h2
www.customink.com/assets-inkpress/style_bitz/SharpSans-MediumItalic-0000000000000000000000000000000000000001.woff2
54.230.111.26200 OK 43 kB URL HTTP/2 www.customink.com/assets-inkpress/style_bitz/SharpSans-MediumItalic-0000000000000000000000000000000000000001.woff2
IP 54.230.111.26:0
File type Web Open Font Format (Version 2), TrueType, length 42969, version 1.0\012- data
Hash d53092acaf9efd8cc8636b950b63dbf9
31c88f917270a37d31439861903f7d7ba0fcdf2f
fbdc3f83338dc18b89f05219aaa84059d45cfb2b568f862cbe961c11ee2e4ff3
GET /assets-inkpress/style_bitz/SharpSans-MediumItalic-0000000000000000000000000000000000000001.woff2 HTTP/1.1
Host: www.customink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-length: 42969
date: Tue, 24 May 2022 03:22:02 GMT
server: Apache
last-modified: Tue, 28 Nov 2017 12:08:37 GMT
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 24 May 2023 03:22:02 GMT
access-control-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 5rYNzmTIWr-hiLMihE0XTkR3VjzIljccC6ErANlJ13X2d0j2utp0HQ==
age: 10507631
X-Firefox-Spdy: h2
www.customink.com/assets-inkpress/style_bitz/SharpSans-Medium-0000000000000000000000000000000000000001.woff2
54.230.111.26200 OK 42 kB URL HTTP/2 www.customink.com/assets-inkpress/style_bitz/SharpSans-Medium-0000000000000000000000000000000000000001.woff2
IP 54.230.111.26:0
File type Web Open Font Format (Version 2), TrueType, length 41465, version 1.0\012- data
Hash fb9793b64c660bf1c8c8204f857ea38b
a159aeb912e64ac136553100d280b0a06e2fc5d9
a6f32039ed402d53dd84b8c0835d6169a782d07c4ba70f210fd6a46155af9dd4
GET /assets-inkpress/style_bitz/SharpSans-Medium-0000000000000000000000000000000000000001.woff2 HTTP/1.1
Host: www.customink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-length: 41465
date: Wed, 18 May 2022 01:02:12 GMT
server: Apache
last-modified: Tue, 28 Nov 2017 12:08:37 GMT
accept-ranges: bytes
cache-control: max-age=31536000
expires: Thu, 18 May 2023 01:02:12 GMT
access-control-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2XgcSxW0ddYpUlJnYncTW14-zmFTr59sBfXAqgadrrq17vgHZSNQcA==
age: 11034421
X-Firefox-Spdy: h2
www.customink.com/assets-inkpress/style_bitz/SharpSans-BoldItalic-0000000000000000000000000000000000000001.woff2
54.230.111.26200 OK 44 kB URL HTTP/2 www.customink.com/assets-inkpress/style_bitz/SharpSans-BoldItalic-0000000000000000000000000000000000000001.woff2
IP 54.230.111.26:0
File type Web Open Font Format (Version 2), TrueType, length 44177, version 1.0\012- data
Hash a628a8c6d8605ff1ee03c01c548caedd
d72b2a640446f76682658880f4ed4658b48ed856
f87ac961e4b449871c51eb37a7368e42d03f0af8d296afde1c3e2cac121fc8a5
GET /assets-inkpress/style_bitz/SharpSans-BoldItalic-0000000000000000000000000000000000000001.woff2 HTTP/1.1
Host: www.customink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/font-woff2
content-length: 44177
date: Sat, 27 Aug 2022 01:39:17 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 26 Aug 2022 17:53:19 GMT
server: nginx
vary: Origin
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: VISJ1NQHLLjCnOEuyhO_t3VichV9XALK_KE2ufXsAQL82S-a949Pog==
age: 2305796
X-Firefox-Spdy: h2
www.customink.com/assets-inkpress/style_bitz/SharpSans-Bold-0000000000000000000000000000000000000001.woff2
54.230.111.26200 OK 42 kB URL HTTP/2 www.customink.com/assets-inkpress/style_bitz/SharpSans-Bold-0000000000000000000000000000000000000001.woff2
IP 54.230.111.26:0
File type Web Open Font Format (Version 2), TrueType, length 41693, version 1.0\012- data
Hash 6ff3def8a006c72d31a297478c31c20e
60f6f34a01375dc0034b582a7040021e0e54e1dc
e8aa52622e9fd93085ac1f9ea02368833169306c1eccdfa50815b400da184b15
GET /assets-inkpress/style_bitz/SharpSans-Bold-0000000000000000000000000000000000000001.woff2 HTTP/1.1
Host: www.customink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/font-woff2
content-length: 41693
date: Thu, 09 Jun 2022 03:04:01 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 06 Jun 2022 15:23:16 GMT
server: nginx/1.22.0
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ifrNaaUpjzipvxhrObXJxnJIL3SeXjp0YLZBtHuy1c7iAx5MVoTQHg==
age: 9126312
X-Firefox-Spdy: h2
www.customink.com/assets/site_content/pages/home/rotator/1448x745/1-c8103e30db5630e815883e407779297110389100c388234bd24dea22b91a6818.jpg
54.230.111.26200 OK 83 kB URL HTTP/2 www.customink.com/assets/site_content/pages/home/rotator/1448x745/1-c8103e30db5630e815883e407779297110389100c388234bd24dea22b91a6818.jpg
IP 54.230.111.26:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1448x745, components 3\012- data
Hash 0981bbebcbefaa33ed724da0bd2e514e
3621966031362c06d1d09b755bf6616c1ff51c17
c8103e30db5630e815883e407779297110389100c388234bd24dea22b91a6818
GET /assets/site_content/pages/home/rotator/1448x745/1-c8103e30db5630e815883e407779297110389100c388234bd24dea22b91a6818.jpg HTTP/1.1
Host: www.customink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 82902
date: Fri, 05 Aug 2022 14:37:30 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 05 Aug 2022 14:03:36 GMT
server: nginx
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: eRd_HCaigNHNJ70A8W1SrXuN-MvyKwXsahDayI05meitSg8BuJJSYg==
age: 4159903
X-Firefox-Spdy: h2
www.customink.com/assets/site_content/pages/home/rotator/svg/t-shirts-for-your-class-88e54e409723f5656ff4ca8a79223729847d735a64d8a8238ba440c574b6854e.svg
54.230.111.26200 OK 22 kB URL HTTP/2 www.customink.com/assets/site_content/pages/home/rotator/svg/t-shirts-for-your-class-88e54e409723f5656ff4ca8a79223729847d735a64d8a8238ba440c574b6854e.svg
IP 54.230.111.26:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (6025)
Hash c64986ccc925970c4b20ec79e2e60481
30ad7ea2442c92b71fc13eddccf064c5ca41d2c6
88e54e409723f5656ff4ca8a79223729847d735a64d8a8238ba440c574b6854e
GET /assets/site_content/pages/home/rotator/svg/t-shirts-for-your-class-88e54e409723f5656ff4ca8a79223729847d735a64d8a8238ba440c574b6854e.svg HTTP/1.1
Host: www.customink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 22145
date: Fri, 05 Aug 2022 14:36:55 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 05 Aug 2022 14:03:36 GMT
server: nginx
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 8mgRASmRUJJURidwqpA6ojoMhSW7FuQs0ugAHDwNXPcMc92niCuvgg==
age: 4159938
X-Firefox-Spdy: h2
www.customink.com/assets/jquery3.min-0807b8ee2cb682e1d4166eaccb7d840238daa29536a857b9530ab54715bd14f4.js
54.230.111.26200 OK 32 kB URL HTTP/2 www.customink.com/assets/jquery3.min-0807b8ee2cb682e1d4166eaccb7d840238daa29536a857b9530ab54715bd14f4.js
IP 54.230.111.26:0
File type ASCII text, with very long lines (32727)
Hash 6faebc12d0e86f15d00af629e6422489
1cffdd959222262161fc3cc0c861ff5d617474ed
b01d2f180f21d197241d35c8bf08f6b66d28dd9ed49df3d379bd3f75911b41c8
GET /assets/jquery3.min-0807b8ee2cb682e1d4166eaccb7d840238daa29536a857b9530ab54715bd14f4.js HTTP/1.1
Host: www.customink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 31531
date: Wed, 06 Jul 2022 12:18:51 GMT
cache-control: public, max-age=31536000
content-encoding: gzip
last-modified: Fri, 01 Jul 2022 17:04:28 GMT
server: nginx
x-newrelic-app-data: PxQBUFZXGwIAV1JQAgkOREgTdVwMEhENXA5dEBd1XVZXCVwWUBNWTTZXVApJIltHWQsPJl5CRwcQUl4JWDUXA0QLW01bWVheEUkJTwFRAlJWBQJTUlMLBgFRV1ACHQdIVAEGBVdXVlsHWw9UDgAABwRVCk0cUB9ABgMHVgUHAApVAAVXAVUOBUZs
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: PTJ50swSnTuk_GA7NEdkx9YIIIvrdhtU4IGrYax_YmACKmlb9w-fHA==
age: 6760222
X-Firefox-Spdy: h2
www.customink.com/assets-inkpress/style_bitz-30c5ef7f22627e3f64d1d5f0dfad2871544c8381.js
54.230.111.26200 OK 24 kB URL HTTP/2 www.customink.com/assets-inkpress/style_bitz-30c5ef7f22627e3f64d1d5f0dfad2871544c8381.js
IP 54.230.111.26:0
File type C source, ASCII text, with very long lines (32800)
Hash 27ff8d0f985176f5d7a66355a897da2b
5f4654ad1d4a689ee50d8149be641175f51a39ab
b53d390607f87e34211c26c733375b91d08ca0bfd128717a1c43c9474c0e67fa
GET /assets-inkpress/style_bitz-30c5ef7f22627e3f64d1d5f0dfad2871544c8381.js HTTP/1.1
Host: www.customink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 24231
date: Thu, 25 Aug 2022 15:47:29 GMT
cache-control: public, max-age=31536000
content-encoding: gzip
last-modified: Thu, 25 Aug 2022 15:17:51 GMT
server: nginx
vary: Accept-Encoding,Origin
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 6bSv-5DfdTZ1au1YSO1tfEuO7DI2SXsll5jlabzpjBuvpNlUWusPEg==
age: 2427704
X-Firefox-Spdy: h2
www.customink.com/assets-inkpress/style_bitz/metrics/interactions-30c5ef7f22627e3f64d1d5f0dfad2871544c8381.js
54.230.111.26200 OK 1.0 kB URL HTTP/2 www.customink.com/assets-inkpress/style_bitz/metrics/interactions-30c5ef7f22627e3f64d1d5f0dfad2871544c8381.js
IP 54.230.111.26:0
File type ASCII text, with very long lines (2408), with no line terminators
Hash 3a1aa32b340d2656fd92c941fa06d7a3
63641d3f69f4677f13a7c3d5a4dc46bbe70dbc2e
5730b65f8a8744100e6cb61892a12920fff60a7f0ac54f362923391a64c2efe1
GET /assets-inkpress/style_bitz/metrics/interactions-30c5ef7f22627e3f64d1d5f0dfad2871544c8381.js HTTP/1.1
Host: www.customink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 1014
date: Thu, 25 Aug 2022 15:47:17 GMT
cache-control: public, max-age=31536000
content-encoding: gzip
last-modified: Thu, 25 Aug 2022 15:16:30 GMT
server: nginx
vary: Accept-Encoding,Origin
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: QscsMS-ucmHdeeg_bCbVfRdmQuGoGUZmuK_iL5or-PCTGdCJStfvrA==
age: 2427716
X-Firefox-Spdy: h2
www.customink.com/assets-inkpress/style_bitz/customink_metrics.min-30c5ef7f22627e3f64d1d5f0dfad2871544c8381.js
54.230.111.26200 OK 6.2 kB URL HTTP/2 www.customink.com/assets-inkpress/style_bitz/customink_metrics.min-30c5ef7f22627e3f64d1d5f0dfad2871544c8381.js
IP 54.230.111.26:0
File type ASCII text, with very long lines (18158), with no line terminators
Hash 0d5d6dbbba265fddeea819721f5334a8
8ad8353ae70829d501a246b5216b448545f5617d
8f562bbf0d3acddcbcca16f3945df11d1c7494a438dacdedbf69dd6fb2a9165b
GET /assets-inkpress/style_bitz/customink_metrics.min-30c5ef7f22627e3f64d1d5f0dfad2871544c8381.js HTTP/1.1
Host: www.customink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 6172
date: Thu, 25 Aug 2022 15:47:58 GMT
cache-control: public, max-age=31536000
content-encoding: gzip
last-modified: Thu, 25 Aug 2022 15:16:30 GMT
server: nginx
vary: Accept-Encoding,Origin
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Hq9jaAlfR7p2I2WG2LVocm_z8uLc8g5Hkom2AiQqa9gUFKpyhp-MPQ==
age: 2427675
X-Firefox-Spdy: h2
www.customink.com/assets/site_content/page-specific/home/homepage-scripts-0c5fb6b98a449caeb61bf8d26f406d81cf31dda4ebb9590c3355e819ee6490f7.js
54.230.111.26200 OK 11 kB URL HTTP/2 www.customink.com/assets/site_content/page-specific/home/homepage-scripts-0c5fb6b98a449caeb61bf8d26f406d81cf31dda4ebb9590c3355e819ee6490f7.js
IP 54.230.111.26:0
File type ASCII text, with very long lines (31590)
Hash c9ae5cf6f9f67f126d140642d62a88c8
976d64117ab86c402f94654857f4e3cf5b9bf96f
27120bd75d8522a29b35d6f30c3f3da33d2f40c92e652e5b75ade4c3ab68b108
GET /assets/site_content/page-specific/home/homepage-scripts-0c5fb6b98a449caeb61bf8d26f406d81cf31dda4ebb9590c3355e819ee6490f7.js HTTP/1.1
Host: www.customink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 10955
date: Tue, 23 Aug 2022 15:45:42 GMT
cache-control: public, max-age=31536000
content-encoding: gzip
last-modified: Tue, 23 Aug 2022 15:04:38 GMT
server: nginx
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: rYZ7M7Y8XklHtwWvLG2z0SNEaPwPmahJjnoot6nZx6WdKA8JS8DtuA==
age: 2600611
X-Firefox-Spdy: h2
www.customink.com/assets/site_content/icons/svg/close-x-05d3569b37d2e4cf43f42399574403747a6454e3b95856daf000e9944201352c.svg
54.230.111.26200 OK 338 B URL HTTP/2 www.customink.com/assets/site_content/icons/svg/close-x-05d3569b37d2e4cf43f42399574403747a6454e3b95856daf000e9944201352c.svg
IP 54.230.111.26:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (337)
Hash 301f22f761841cbe7806cc8c17b12bdf
c7d13dd81ca8deae77375af5efc454100d98773e
05d3569b37d2e4cf43f42399574403747a6454e3b95856daf000e9944201352c
GET /assets/site_content/icons/svg/close-x-05d3569b37d2e4cf43f42399574403747a6454e3b95856daf000e9944201352c.svg HTTP/1.1
Host: www.customink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 338
date: Fri, 05 Aug 2022 14:36:55 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 05 Aug 2022 14:03:36 GMT
server: nginx
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: kB6GWQ9F0RAO8zeiIQtXP9_QlCPO3QxC1bXmHk5Hve5UiRCP7zZg4g==
age: 4159938
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Thu, 22 Sep 2022 18:03:22 GMT
Expires: Thu, 22 Sep 2022 18:12:27 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: nG_3fibUBdHRcgYeT-5LN9aaQYaAygR20gAM1W7Qq9LlUVUslalylg==
Age: 351
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 86624f45fb3b7126dbe002f69c94dd86
30bcf274db5037122f989fb25dbf1e72c9ec417b
2cc9600578cf057dc499835773fb495caa60ac154c4945f0fc1f2b31d43f5502
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4892
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 18:09:13 GMT
Last-Modified: Thu, 22 Sep 2022 16:47:41 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
www.customink.com/assets/site_content/pages/home/rotator/svg/praise-your-team-25b2aebf602fe3ff901d0dce51a6b0ce4ee0a7a7df4d7273f2f82c598b2de173.svg
54.230.111.26200 OK 11 kB URL HTTP/2 www.customink.com/assets/site_content/pages/home/rotator/svg/praise-your-team-25b2aebf602fe3ff901d0dce51a6b0ce4ee0a7a7df4d7273f2f82c598b2de173.svg
IP 54.230.111.26:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2981)
Hash 202e61b347374f506e942361057e723e
e5096720e78291b383a5f95f30a53273353dc754
25b2aebf602fe3ff901d0dce51a6b0ce4ee0a7a7df4d7273f2f82c598b2de173
GET /assets/site_content/pages/home/rotator/svg/praise-your-team-25b2aebf602fe3ff901d0dce51a6b0ce4ee0a7a7df4d7273f2f82c598b2de173.svg HTTP/1.1
Host: www.customink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Cookie: optimizelyEndUserId=oeu1663870153476r0.29211388897556534
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 11272
date: Fri, 05 Aug 2022 14:36:55 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 05 Aug 2022 14:03:36 GMT
server: nginx
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 95syb8IoZaUZVK97kwQTm4ZDhw1tPY2cA-ZrokZnXqf0ytW_jCC__A==
age: 4159939
X-Firefox-Spdy: h2
www.customink.com/assets/site_content/pages/home/rotator/svg/spread-your-brand-5e537f758840a531a213ac561db652645ea8529d3108b3cd92141739617c6a18.svg
54.230.111.26200 OK 16 kB URL HTTP/2 www.customink.com/assets/site_content/pages/home/rotator/svg/spread-your-brand-5e537f758840a531a213ac561db652645ea8529d3108b3cd92141739617c6a18.svg
IP 54.230.111.26:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3509)
Hash b5cf832e2436997ae86472af127bb671
f2df0f87f03046d97655ebde8b370a5dba709221
5e537f758840a531a213ac561db652645ea8529d3108b3cd92141739617c6a18
GET /assets/site_content/pages/home/rotator/svg/spread-your-brand-5e537f758840a531a213ac561db652645ea8529d3108b3cd92141739617c6a18.svg HTTP/1.1
Host: www.customink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Cookie: optimizelyEndUserId=oeu1663870153476r0.29211388897556534
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 16144
date: Mon, 15 Aug 2022 02:41:24 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 12 Aug 2022 17:37:36 GMT
server: nginx
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: WR3arYdjUdW49ESIBVoB8njVqY_1r3Nq283b_gNrNh5vEnZRSOWBeg==
age: 3338870
X-Firefox-Spdy: h2
www.customink.com/assets/site_content/shared/stacks/shipping/box-753dac197abe31ca304a024ce977c6735b73861390eb60f79f8c056310d8b20f.png
54.230.111.26200 OK 7.5 kB URL HTTP/2 www.customink.com/assets/site_content/shared/stacks/shipping/box-753dac197abe31ca304a024ce977c6735b73861390eb60f79f8c056310d8b20f.png
IP 54.230.111.26:0
File type PNG image data, 700 x 359, 4-bit colormap, non-interlaced\012- data
Hash 903dc252bd353331409c4a66c46e0ba6
16740317378a4511af723160a30850f676548a2b
753dac197abe31ca304a024ce977c6735b73861390eb60f79f8c056310d8b20f
GET /assets/site_content/shared/stacks/shipping/box-753dac197abe31ca304a024ce977c6735b73861390eb60f79f8c056310d8b20f.png HTTP/1.1
Host: www.customink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Cookie: optimizelyEndUserId=oeu1663870153476r0.29211388897556534
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 7533
date: Fri, 05 Aug 2022 14:36:55 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 05 Aug 2022 14:03:36 GMT
server: nginx
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: E_Mais5UwFpVU_jxL83KvsaGkJmkjntkeRl1mfrfXSHYZu8-9BoU1w==
age: 4159939
X-Firefox-Spdy: h2
www.customink.com/assets/site_content/shared/stacks/shipping/bags-b9fa2850e5813241b08814678534a62fdf84fb853c2e754320abe962a4a3fc5f.png
54.230.111.26200 OK 44 kB URL HTTP/2 www.customink.com/assets/site_content/shared/stacks/shipping/bags-b9fa2850e5813241b08814678534a62fdf84fb853c2e754320abe962a4a3fc5f.png
IP 54.230.111.26:0
File type PNG image data, 422 x 340, 8-bit colormap, non-interlaced\012- data
Hash ea1c1c395cac218bb907940635082409
923dfc5078c13d114e6cb74616a46fb221f6dfaa
b9fa2850e5813241b08814678534a62fdf84fb853c2e754320abe962a4a3fc5f
GET /assets/site_content/shared/stacks/shipping/bags-b9fa2850e5813241b08814678534a62fdf84fb853c2e754320abe962a4a3fc5f.png HTTP/1.1
Host: www.customink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Cookie: optimizelyEndUserId=oeu1663870153476r0.29211388897556534
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 43767
date: Fri, 05 Aug 2022 14:36:55 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 05 Aug 2022 14:03:36 GMT
server: nginx
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Am8f0ZK4ZYJ3pcBZuAVWu7jBuDwDen65usuYqv3SxQ0Qij8gp0lQ3w==
age: 4159939
X-Firefox-Spdy: h2
www.customink.com/assets/site_content/icons/check-3699301ed510e0a8bcbdb97faad253d69c77cf0d018dda7b1863e7c2cc8532e6.gif
54.230.111.26200 OK 125 B URL HTTP/2 www.customink.com/assets/site_content/icons/check-3699301ed510e0a8bcbdb97faad253d69c77cf0d018dda7b1863e7c2cc8532e6.gif
IP 54.230.111.26:0
File type GIF image data, version 89a, 11 x 10\012- data
Hash c7829dfcdca85afd576758f50d9146f4
4478afc7013a870c1781c2877e992098f3dc5b1b
3699301ed510e0a8bcbdb97faad253d69c77cf0d018dda7b1863e7c2cc8532e6
GET /assets/site_content/icons/check-3699301ed510e0a8bcbdb97faad253d69c77cf0d018dda7b1863e7c2cc8532e6.gif HTTP/1.1
Host: www.customink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Cookie: optimizelyEndUserId=oeu1663870153476r0.29211388897556534
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 125
date: Fri, 05 Aug 2022 14:36:55 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 05 Aug 2022 14:03:36 GMT
server: nginx
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: nFRqaxW2jum290BJPSKMEKmNR9cC3iV17yPvJVxSMlmQOZbTN4ZQDA==
age: 4159939
X-Firefox-Spdy: h2
www.customink.com/assets/site_content/icons/slider-arrow-f02c357211f5664c60fc97b6e775ee924ae420d3c6f349188ee747fab3c36f44.svg
54.230.111.26200 OK 320 B URL HTTP/2 www.customink.com/assets/site_content/icons/slider-arrow-f02c357211f5664c60fc97b6e775ee924ae420d3c6f349188ee747fab3c36f44.svg
IP 54.230.111.26:0
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (320), with no line terminators
Hash 71ee8a25423ea10d6705798cfe3fe358
cfd4ca373ec38892a8920eeecbd96639548825bc
f02c357211f5664c60fc97b6e775ee924ae420d3c6f349188ee747fab3c36f44
GET /assets/site_content/icons/slider-arrow-f02c357211f5664c60fc97b6e775ee924ae420d3c6f349188ee747fab3c36f44.svg HTTP/1.1
Host: www.customink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Cookie: optimizelyEndUserId=oeu1663870153476r0.29211388897556534
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 320
date: Fri, 05 Aug 2022 14:36:55 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 05 Aug 2022 14:03:36 GMT
server: nginx
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: i8sa1EjNJW-tu2NZJto5Obugbwq09fsIY56k22OQ0YRgk6Hh1gpg5w==
age: 4159939
X-Firefox-Spdy: h2
www.customink.com/assets-inkpress/style_bitz/sticky_nav/service-30c5ef7f22627e3f64d1d5f0dfad2871544c8381.jpg
54.230.111.26200 OK 4.8 kB URL HTTP/2 www.customink.com/assets-inkpress/style_bitz/sticky_nav/service-30c5ef7f22627e3f64d1d5f0dfad2871544c8381.jpg
IP 54.230.111.26:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, extended sequential, precision 8, 150x150, components 3\012- data
Hash 0f2cba90a7594d1ebf12547ec339877f
cc29f8d9a5b1909787b19344cb2bccca8f7fe08f
aad6816007f4e06b67f9eab75766edc16398d0af947c409d024cb2850a67012a
GET /assets-inkpress/style_bitz/sticky_nav/service-30c5ef7f22627e3f64d1d5f0dfad2871544c8381.jpg HTTP/1.1
Host: www.customink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/assets-inkpress/style_bitz/style_bitz-30c5ef7f22627e3f64d1d5f0dfad2871544c8381.css
Cookie: optimizelyEndUserId=oeu1663870153476r0.29211388897556534
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 4822
date: Thu, 25 Aug 2022 16:20:55 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 25 Aug 2022 15:16:30 GMT
server: nginx
vary: Origin
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: N6pfRHyewTictMETBaARCPLgXDcOLkRlkgzYi_jiWpoqOwv9egiCwg==
age: 2425699
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash c7b623b7bcd37d436886346d495f9577
eb5688f0df28fa33b202e78d916e35387178636d
74037773d23c4426c3717e239e9dc228904f9cc8b8f084c655e26dcd9e345a96
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 18:09:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.customink.com/assets-inkpress/style_bitz/footer/watch-poster-30c5ef7f22627e3f64d1d5f0dfad2871544c8381.jpg
54.230.111.26200 OK 13 kB URL HTTP/2 www.customink.com/assets-inkpress/style_bitz/footer/watch-poster-30c5ef7f22627e3f64d1d5f0dfad2871544c8381.jpg
IP 54.230.111.26:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x169, components 3\012- data
Hash e3ae7f16371ab249f412ae7d4f91dca3
60cb760daad82a3240411acaf3727afd5fe4a863
d42a3249e13e78046c6ad7e2285ea4fbf59984f51ed89e14efbc0dcad761700e
GET /assets-inkpress/style_bitz/footer/watch-poster-30c5ef7f22627e3f64d1d5f0dfad2871544c8381.jpg HTTP/1.1
Host: www.customink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/assets-inkpress/style_bitz/style_bitz-30c5ef7f22627e3f64d1d5f0dfad2871544c8381.css
Cookie: optimizelyEndUserId=oeu1663870153476r0.29211388897556534
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 12656
date: Thu, 25 Aug 2022 16:17:45 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 25 Aug 2022 15:16:30 GMT
server: nginx
vary: Origin
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ELT6hA11lHSf-KZUQbbiG3oAJyHhl8i69uAliCqCNyZ4uihZmfHxMw==
age: 2425889
X-Firefox-Spdy: h2
www.customink.com/assets/site_content/pages/home/rotator/1700x875/2-b8716e8a7167be889a6cba23075d79eeefe9a797a443eadd4d595e0427596119.jpg
54.230.111.26200 OK 102 kB URL HTTP/2 www.customink.com/assets/site_content/pages/home/rotator/1700x875/2-b8716e8a7167be889a6cba23075d79eeefe9a797a443eadd4d595e0427596119.jpg
IP 54.230.111.26:0
File type JPEG image data, progressive, precision 8, 1700x875, components 3\012- data
Size 102 kB (102060 bytes)
Hash bcaa76a2a206b29a6ba301420f51020f
ca78262952b0300edac1ac32c545e182306aca7f
b8716e8a7167be889a6cba23075d79eeefe9a797a443eadd4d595e0427596119
GET /assets/site_content/pages/home/rotator/1700x875/2-b8716e8a7167be889a6cba23075d79eeefe9a797a443eadd4d595e0427596119.jpg HTTP/1.1
Host: www.customink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Cookie: optimizelyEndUserId=oeu1663870153476r0.29211388897556534; feature_shipping_guarantee_v2=control; page_tests=o%3A1663870153650%3Da%253As%25253Ashipguarantee-control%255Es%25253Ahomecta-test; feature_homepage_cta_test_aug_2022=test
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 102060
date: Fri, 05 Aug 2022 14:36:55 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 05 Aug 2022 14:03:36 GMT
server: nginx
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Tk5q8yhDznaf9pZj5NFSk0fI__Wnthdiwa0BktveNMRNr_ADo4CUCg==
age: 4159939
X-Firefox-Spdy: h2
www.customink.com/assets/site_content/pages/home/rotator/1700x875/4-4f67e4eefaf4c7835b13658affc5773b26b18ecdfe649ca1a167febc455e5c1c.jpg
54.230.111.26200 OK 92 kB URL HTTP/2 www.customink.com/assets/site_content/pages/home/rotator/1700x875/4-4f67e4eefaf4c7835b13658affc5773b26b18ecdfe649ca1a167febc455e5c1c.jpg
IP 54.230.111.26:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1700x340, components 3\012- data
Hash cc547c88b6da755be398861e6c94ad1b
cb59739c9d82644c2e99025f8653a17b7fd50721
4f67e4eefaf4c7835b13658affc5773b26b18ecdfe649ca1a167febc455e5c1c
GET /assets/site_content/pages/home/rotator/1700x875/4-4f67e4eefaf4c7835b13658affc5773b26b18ecdfe649ca1a167febc455e5c1c.jpg HTTP/1.1
Host: www.customink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Cookie: optimizelyEndUserId=oeu1663870153476r0.29211388897556534; feature_shipping_guarantee_v2=control; page_tests=o%3A1663870153650%3Da%253As%25253Ashipguarantee-control%255Es%25253Ahomecta-test; feature_homepage_cta_test_aug_2022=test
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 91664
date: Fri, 05 Aug 2022 14:36:55 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 05 Aug 2022 14:03:36 GMT
server: nginx
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: NfsRRmEa-voRPEtwA14eW6RXn3oRkni6SlvoEYxpqT8KWB-DSW9Zyg==
age: 4159939
X-Firefox-Spdy: h2
www.customink.com/assets/site_content/pages/home/rotator/1700x875/3-8c0e5b93e95f5df6b877e3868507edcab3f81d5670a75e89f9563a862d66dcc3.jpg
54.230.111.26200 OK 118 kB URL HTTP/2 www.customink.com/assets/site_content/pages/home/rotator/1700x875/3-8c0e5b93e95f5df6b877e3868507edcab3f81d5670a75e89f9563a862d66dcc3.jpg
IP 54.230.111.26:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1700x875, components 3\012- data
Size 118 kB (117581 bytes)
Hash c8597e60ad09f9fefa67a2fccdd15090
eb42899134bd8a7a41d498559a0429738a69f680
8c0e5b93e95f5df6b877e3868507edcab3f81d5670a75e89f9563a862d66dcc3
GET /assets/site_content/pages/home/rotator/1700x875/3-8c0e5b93e95f5df6b877e3868507edcab3f81d5670a75e89f9563a862d66dcc3.jpg HTTP/1.1
Host: www.customink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Cookie: optimizelyEndUserId=oeu1663870153476r0.29211388897556534; feature_shipping_guarantee_v2=control; page_tests=o%3A1663870153650%3Da%253As%25253Ashipguarantee-control%255Es%25253Ahomecta-test; feature_homepage_cta_test_aug_2022=test
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 117581
date: Fri, 05 Aug 2022 14:36:55 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 05 Aug 2022 14:03:36 GMT
server: nginx
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: gMtmp8DutWXjM_DbNa9HPeXsEPS6MpwwnGJTMWMjVN7jifaOnwTScg==
age: 4159939
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-P96QK7
142.250.74.72200 OK 99 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-P96QK7
IP 142.250.74.72:0
File type ASCII text, with very long lines (36630)
Hash 8558ca17bc0c7f0e3f884e43c23db022
0362497fed0231c4948401db9ff269af4ec002a9
eb7563d7614dd38a0ea267206e679408a4afb24c61739a1c527b642597ff6b15
GET /gtm.js?id=GTM-P96QK7 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 22 Sep 2022 18:09:14 GMT
expires: Thu, 22 Sep 2022 18:09:14 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 99079
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
push.services.mozilla.com/
44.237.239.70101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.237.239.70:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: qk7V54T/Z8UZnHrw136kGQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: +HYKo9ObzrOljh8RDiw6YFuMuVg=
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash c7b623b7bcd37d436886346d495f9577
eb5688f0df28fa33b202e78d916e35387178636d
74037773d23c4426c3717e239e9dc228904f9cc8b8f084c655e26dcd9e345a96
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 18:09:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ds.reson8.com/insights.gif?rand=56267777863.77217&t=0&pixt=other&advkey=0013000001fmteraaf&opptykey=cink0114a&evkey=116109&evtype=custom&fl=f1
104.18.8.110204 No Content 0 B URL HTTP/2 ds.reson8.com/insights.gif?rand=56267777863.77217&t=0&pixt=other&advkey=0013000001fmteraaf&opptykey=cink0114a&evkey=116109&evtype=custom&fl=f1
IP 104.18.8.110:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /insights.gif?rand=56267777863.77217&t=0&pixt=other&advkey=0013000001fmteraaf&opptykey=cink0114a&evkey=116109&evtype=custom&fl=f1 HTTP/1.1
Host: ds.reson8.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 22 Sep 2022 18:09:14 GMT
vary: Accept-Encoding
strict-transport-security: max-age=15552000
server: cloudflare
cf-ray: 74ecfd909d5db51e-OSL
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash cae538dcce82598fbe43c0bf443e62dd
cc68ac6be9c5e0087a0000e5735b83270ace30f5
954b9e9d9744e1319c51760780a35de2dec353afffac705c2cca6d836a5e056d
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 19826
date: Thu, 22 Sep 2022 16:41:09 GMT
expires: Thu, 22 Sep 2022 18:41:09 GMT
cache-control: public, max-age=7200
age: 5285
last-modified: Sun, 11 Sep 2022 13:50:09 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
a21861540101.cdn.optimizely.com/client_storage/a21861540101.html
104.110.8.48200 OK 799 B URL HTTP/2 a21861540101.cdn.optimizely.com/client_storage/a21861540101.html
IP 104.110.8.48:0
File type HTML document, ASCII text, with very long lines (1371)
Hash ca03cac351b38e4b32cf5574f8fb17c3
2a3d1f7e040952f0869659fe3ae137ce8743b476
fd235d64114f55ffd50b873672778df8589369b5bbf98f8f50d007e4d3dea1cd
GET /client_storage/a21861540101.html HTTP/1.1
Host: a21861540101.cdn.optimizely.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: dwPSZyXJHJa6E7bbFWHfxXdtadWre1QLo9fp+1Y4D4/Mdxj9Wdv9zKxcGgjuc7vGPwgJ7Uj+6vA=
x-amz-request-id: XZWD3DESTS3G698M
x-amz-replication-status: COMPLETED
last-modified: Mon, 19 Sep 2022 22:28:15 GMT
etag: "ca03cac351b38e4b32cf5574f8fb17c3"
x-amz-server-side-encryption: AES256
x-amz-meta-pci_enabled: False
content-encoding: gzip
x-amz-version-id: vWeFi7UdyIWLUiTlOjS7po7WbR91MgR8
accept-ranges: bytes
content-type: text/html; charset=utf-8
server: AmazonS3
content-length: 799
vary: Accept-Encoding
cache-control: max-age=120
date: Thu, 22 Sep 2022 18:09:14 GMT
server-timing: cdn;desc="AkamaiION";dur=0,rtt;desc="2";dur=0,cdnip;desc="104.110.8.48";dur=0,cdnmap;desc="a4728.x.akamaiedge.net";dur=0,proto;desc="h2";dur=0
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
www.customink.com/favicon.ico
54.230.111.26200 OK 15 kB URL HTTP/2 www.customink.com/favicon.ico
IP 54.230.111.26:0
File type MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash 402fa1b98f3d07c3c31ce2055bf70ca9
a26219a09128ec036395605a3be73187964702d4
b66aeb4ac3f2460ac38d9ebcc06e5fc935ec18bb14ec16c7fd831cd3735f377a
GET /favicon.ico HTTP/1.1
Host: www.customink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Cookie: optimizelyEndUserId=oeu1663870153476r0.29211388897556534; feature_shipping_guarantee_v2=control; page_tests=o%3A1663870153650%3Da%253As%25253Ashipguarantee-control%255Es%25253Ahomecta-test; feature_homepage_cta_test_aug_2022=test
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/vnd.microsoft.icon
content-length: 15086
date: Thu, 22 Sep 2022 18:09:14 GMT
last-modified: Wed, 21 Sep 2022 13:21:10 GMT
server: nginx
x-cache: Miss from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZbG_UObCiUWXZs3XS7QTntai2RW84v8bHu_MK2avmv15NznuaBQv4w==
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5af22e39b225120461ea5dc341b14321
38a609c3fa222ded0cfe61ff6ed446561f92d10d
ba3362176a7e67ea61abf9de1e8104df80614b02ce23ab7ab0ab75480b65fd38
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 18:09:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
js.adsrvr.org/up_loader.1.1.0.js
143.204.45.46200 OK 1.9 kB URL HTTP/1.1 js.adsrvr.org/up_loader.1.1.0.js
IP 143.204.45.46:0
File type ASCII text, with very long lines (4593), with no line terminators
Hash 8014ea74946aee77ef2f3b9a264be553
fda85fc27ac2f811e543c11436cf5623cbd46bb2
271b1db0f8cff912a931b78cedb32fd59adeb60025dbcbd7cc5add7d03c82f7c
GET /up_loader.1.1.0.js HTTP/1.1
Host: js.adsrvr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 24 Sep 2020 15:15:34 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Thu, 22 Sep 2022 01:54:48 GMT
ETag: W/"98d98b3499058b76d58073cf8ede2f10"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: qpNpkCFRHv_vZln5uqv0SsBFOxe1dgqSOiRWB3Wbym6BlWGyohDk1Q==
Age: 58467
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5af22e39b225120461ea5dc341b14321
38a609c3fa222ded0cfe61ff6ed446561f92d10d
ba3362176a7e67ea61abf9de1e8104df80614b02ce23ab7ab0ab75480b65fd38
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 18:09:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5af22e39b225120461ea5dc341b14321
38a609c3fa222ded0cfe61ff6ed446561f92d10d
ba3362176a7e67ea61abf9de1e8104df80614b02ce23ab7ab0ab75480b65fd38
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 18:09:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
8494807.fls.doubleclick.net/activityi;src=8494807;type=global;cat=uvisit;ord=1;num=5566540454399;gtm=2wg9l0;auiddc=518400836.1663870154;u2=https%3A%2F%2Fwww.customink.com%2F;u1=%7C;~oref=https%3A%2F%2Fwww.customink.com%2F?
142.250.74.70200 OK 369 B URL HTTP/2 8494807.fls.doubleclick.net/activityi;src=8494807;type=global;cat=uvisit;ord=1;num=5566540454399;gtm=2wg9l0;auiddc=518400836.1663870154;u2=https%3A%2F%2Fwww.customink.com%2F;u1=%7C;~oref=https%3A%2F%2Fwww.customink.com%2F?
IP 142.250.74.70:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (498), with no line terminators
Hash 72786e18b3a036f1ce0c25227804432d
b0eff6e4affaf09822d806c9d7e430f99e58ab5f
690e5f5fd0f6e1bc863291a533b1ab057c2068ba8dbfe5c6e94cfe4727db48d0
GET /activityi;src=8494807;type=global;cat=uvisit;ord=1;num=5566540454399;gtm=2wg9l0;auiddc=518400836.1663870154;u2=https%3A%2F%2Fwww.customink.com%2F;u1=%7C;~oref=https%3A%2F%2Fwww.customink.com%2F? HTTP/1.1
Host: 8494807.fls.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 22 Sep 2022 18:09:14 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
strict-transport-security: max-age=21600
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 369
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 22-Sep-2022 18:24:14 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
11319611.fls.doubleclick.net/activityi;src=11319611;type=keyse0;cat=custo00;ord=1;num=915226154146;gtm=2wg9l0;auiddc=518400836.1663870154;~oref=https%3A%2F%2Fwww.customink.com%2F?
142.250.74.70200 OK 354 B URL HTTP/2 11319611.fls.doubleclick.net/activityi;src=11319611;type=keyse0;cat=custo00;ord=1;num=915226154146;gtm=2wg9l0;auiddc=518400836.1663870154;~oref=https%3A%2F%2Fwww.customink.com%2F?
IP 142.250.74.70:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (454), with no line terminators
Hash a16511c2c52145753a7b7213678ecb5b
0360f734ef3fe48eb1c61df460a61a7dd162ced2
3b9f5506e043a47a97a55f7a4985b3471d57556fbe182bdeda0b3797bad228e8
GET /activityi;src=11319611;type=keyse0;cat=custo00;ord=1;num=915226154146;gtm=2wg9l0;auiddc=518400836.1663870154;~oref=https%3A%2F%2Fwww.customink.com%2F? HTTP/1.1
Host: 11319611.fls.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 22 Sep 2022 18:09:14 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
strict-transport-security: max-age=21600
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 354
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 22-Sep-2022 18:24:14 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
11319611.fls.doubleclick.net/activityi;src=11319611;type=keyse0;cat=custo0;ord=1;num=2601253771180;gtm=2wg9l0;auiddc=518400836.1663870154;~oref=https%3A%2F%2Fwww.customink.com%2F?
142.250.74.70200 OK 354 B URL HTTP/2 11319611.fls.doubleclick.net/activityi;src=11319611;type=keyse0;cat=custo0;ord=1;num=2601253771180;gtm=2wg9l0;auiddc=518400836.1663870154;~oref=https%3A%2F%2Fwww.customink.com%2F?
IP 142.250.74.70:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (454), with no line terminators
Hash 2514f7db046a88c547c8e42ce1072110
818ad77828148fd91f001e897100f8836c8dbe84
b6febbcd71f761f14d244b2b13d06e2e521fb3285357d5b1d3b658e170c4009d
GET /activityi;src=11319611;type=keyse0;cat=custo0;ord=1;num=2601253771180;gtm=2wg9l0;auiddc=518400836.1663870154;~oref=https%3A%2F%2Fwww.customink.com%2F? HTTP/1.1
Host: 11319611.fls.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 22 Sep 2022 18:09:14 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
strict-transport-security: max-age=21600
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 354
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 22-Sep-2022 18:24:14 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5af22e39b225120461ea5dc341b14321
38a609c3fa222ded0cfe61ff6ed446561f92d10d
ba3362176a7e67ea61abf9de1e8104df80614b02ce23ab7ab0ab75480b65fd38
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 18:09:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f85caa32cfc5c68ae9d37dac5075d086
d98cb95e042dfdf7fcfe0bef3d83624a970ee7ab
c1d5882e2ccbee35dfb5d42d78ef6fd843882cbbbe5653cd686ff768e697ac84
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 18:09:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.com/ddm/fls/i/src=8494807;type=global;cat=allpv;ord=5050254464478;gtm=2wg9l0;auiddc=518400836.1663870154;u2=https%3A%2F%2Fwww.customink.com%2F;u1=%7C;u3=;~oref=https%3A%2F%2Fwww.customink.com%2F
142.250.74.2200 OK 370 B URL HTTP/2 adservice.google.com/ddm/fls/i/src=8494807;type=global;cat=allpv;ord=5050254464478;gtm=2wg9l0;auiddc=518400836.1663870154;u2=https%3A%2F%2Fwww.customink.com%2F;u1=%7C;u3=;~oref=https%3A%2F%2Fwww.customink.com%2F
IP 142.250.74.2:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (494), with no line terminators
Hash bdc7013031643445fea612a637341458
df0bc15f962d729dede6afb69cc007fbb47667d5
399ddfbb50b6a508f1abb80da5a263811b32748a6a7753f171ea1d4a0a9b25ce
GET /ddm/fls/i/src=8494807;type=global;cat=allpv;ord=5050254464478;gtm=2wg9l0;auiddc=518400836.1663870154;u2=https%3A%2F%2Fwww.customink.com%2F;u1=%7C;u3=;~oref=https%3A%2F%2Fwww.customink.com%2F HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://8494807.fls.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 22 Sep 2022 18:09:14 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 370
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/ddm/fls/i/src=8494807;type=global;cat=uvisit;ord=1;num=5566540454399;gtm=2wg9l0;auiddc=518400836.1663870154;u2=https%3A%2F%2Fwww.customink.com%2F;u1=%7C;~oref=https%3A%2F%2Fwww.customink.com%2F
142.250.74.2200 OK 372 B URL HTTP/2 adservice.google.com/ddm/fls/i/src=8494807;type=global;cat=uvisit;ord=1;num=5566540454399;gtm=2wg9l0;auiddc=518400836.1663870154;u2=https%3A%2F%2Fwww.customink.com%2F;u1=%7C;~oref=https%3A%2F%2Fwww.customink.com%2F
IP 142.250.74.2:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (497), with no line terminators
Hash 408b479adb090b762500b6a6b4a066bc
9c346c64cf9a726b9e3a178fc40f4a3990d18e67
9dd49343ce8f880fea0dd0cf80f39ca58f6586ee9c0a50fd1fe4837f0e0ab251
GET /ddm/fls/i/src=8494807;type=global;cat=uvisit;ord=1;num=5566540454399;gtm=2wg9l0;auiddc=518400836.1663870154;u2=https%3A%2F%2Fwww.customink.com%2F;u1=%7C;~oref=https%3A%2F%2Fwww.customink.com%2F HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://8494807.fls.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 22 Sep 2022 18:09:14 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 372
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f4589cef50f0426b60bf56a1fadb93a5
7db92337dc8c6161e31f89f49db18c4cd22b871f
db8b6e5f5a4e43b9e8e835e9434f0f94ead7965c04dc4641dad639ac778d8215
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 18:09:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.com/ddm/fls/i/src=11319611;type=keyse0;cat=custo00;ord=1;num=915226154146;gtm=2wg9l0;auiddc=518400836.1663870154;~oref=https%3A%2F%2Fwww.customink.com%2F
142.250.74.2200 OK 354 B URL HTTP/2 adservice.google.com/ddm/fls/i/src=11319611;type=keyse0;cat=custo00;ord=1;num=915226154146;gtm=2wg9l0;auiddc=518400836.1663870154;~oref=https%3A%2F%2Fwww.customink.com%2F
IP 142.250.74.2:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (453), with no line terminators
Hash 6e84d28020b24536c8607a81a07fa836
5c0c89ab09769e318f8bcbea87e189eef8a1183a
11e68457fcf32f5acd58764395eb695b7d6c795666ed4dbd810e5538cff59f9d
GET /ddm/fls/i/src=11319611;type=keyse0;cat=custo00;ord=1;num=915226154146;gtm=2wg9l0;auiddc=518400836.1663870154;~oref=https%3A%2F%2Fwww.customink.com%2F HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11319611.fls.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 22 Sep 2022 18:09:14 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 354
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash c9de0b3c34611b80510bd3f1fa6ae0fd
5ce7d6e4360594b160ca764b6d02aa7e5e291dea
4dac3fb1beb37ae1d7e386702dc79343a75fc05378376709a40777198a3c134b
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 18:09:14 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 21 Sep 2022 03:43:25 GMT
Expires: Wed, 28 Sep 2022 03:43:24 GMT
Etag: "5ce7d6e4360594b160ca764b6d02aa7e5e291dea"
Cache-Control: max-age=465849,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74ecfd918e890b06-OSL
lptag.liveperson.net/tag/tag.js?site=23156914
178.249.101.23200 OK 7.6 kB URL HTTP/2 lptag.liveperson.net/tag/tag.js?site=23156914
IP 178.249.101.23:0
File type ASCII text, with very long lines (21652), with no line terminators
Hash 6b675640425ec8551a433e26a377d954
7234f02cce1ccb2a4facf2b34b9185cfcf27299d
8c9716f14d2e964be7c93d3d8c28819cb35c529fce6206a79061cda509e05bfd
GET /tag/tag.js?site=23156914 HTTP/1.1
Host: lptag.liveperson.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 22 Sep 2022 18:09:14 GMT
content-type: application/javascript
content-length: 7567
last-modified: Thu, 03 Sep 2020 08:27:49 GMT
etag: "5f50a905-1d8f"
content-encoding: gzip
server: ws
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
cache-control: public, max-age=630
x-content-type-options: nosniff
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f675396b1827a50c78e358358f256144
451b788273e06a08f762735c23c13028e32a3f3c
6bd9e2ec423bf8f0f681a92f4ad0b28cdb53f5df6ca4b571c9697b678c20c126
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 18:09:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f675396b1827a50c78e358358f256144
451b788273e06a08f762735c23c13028e32a3f3c
6bd9e2ec423bf8f0f681a92f4ad0b28cdb53f5df6ca4b571c9697b678c20c126
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 18:09:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f675396b1827a50c78e358358f256144
451b788273e06a08f762735c23c13028e32a3f3c
6bd9e2ec423bf8f0f681a92f4ad0b28cdb53f5df6ca4b571c9697b678c20c126
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 18:09:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 5237120265aad0ad6563a92555e7d9a7
42d561384fc57418dbca08e6897a69a4e225edef
1040466accd7f07339ea16869ea10618a5017166fa44f8d2a25d537c60a338ab
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 22 Sep 2022 18:09:14 GMT
Last-Modified: Thu, 22 Sep 2022 16:53:58 GMT
Server: ECS (nyb/1D19)
X-Cache: Miss from cloudfront
Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: OytIleUSTGZpxNeJOY_q4sIlCFB14sdagc5Oar_z_kHHbANKkc42Ow==
Age: 4516
pixel.pointmediatracker.com/kpi?c=customink&kpi=visit&tag_id=163&fpc=b4bc5b46-c917-4f4d-9d05-1bb2b674780c&utm_source=&utm_medium=undefined&utm_campaign=%2F>mcb=531865972
143.204.55.116302 Found 2 B URL HTTP/2 pixel.pointmediatracker.com/kpi?c=customink&kpi=visit&tag_id=163&fpc=b4bc5b46-c917-4f4d-9d05-1bb2b674780c&utm_source=&utm_medium=undefined&utm_campaign=%2F>mcb=531865972
IP 143.204.55.116:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /kpi?c=customink&kpi=visit&tag_id=163&fpc=b4bc5b46-c917-4f4d-9d05-1bb2b674780c&utm_source=&utm_medium=undefined&utm_campaign=%2F>mcb=531865972 HTTP/1.1
Host: pixel.pointmediatracker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: application/json
content-length: 2
location: https://cnv.event.prod.bidr.io/log/cnv?tag_id=163&buzz_key=blisspoint&value=customink&segment_key=&order=bfaaf305-854a-4515-b4b8-88f88e520807.null&ord=8164889276790689537
date: Thu, 22 Sep 2022 18:09:14 GMT
x-amzn-requestid: bc2a7f09-5943-4fc5-bb3e-295580400220
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
set-cookie: c=e8d7056a-cd98-49e9-8efc-f3a4efe1e8f8; domain=.pointmediatracker.com; expires=Fri, 22-Sep-2023 18:09:14 GMT; path=/; secure; SameSite=None
x-amz-apigw-id: Y36vrHcFvHcFTqw=
x-amzn-trace-id: Root=1-632ca4ca-527f69f402c434b113378629;Sampled=0
x-cache: Miss from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: IrVM08j66Cia8s9T-aFnY4pfIPFpPJN1UA-h5tH1tkUKSNODnwGLDA==
X-Firefox-Spdy: h2
adservice.google.no/ddm/fls/i/src=8494807;type=global;cat=allpv;ord=5050254464478;gtm=2wg9l0;auiddc=518400836.1663870154;u2=https%3A%2F%2Fwww.customink.com%2F;u1=%7C;u3=;~oref=https%3A%2F%2Fwww.customink.com%2F
142.250.74.2200 OK 177 B URL HTTP/2 adservice.google.no/ddm/fls/i/src=8494807;type=global;cat=allpv;ord=5050254464478;gtm=2wg9l0;auiddc=518400836.1663870154;u2=https%3A%2F%2Fwww.customink.com%2F;u1=%7C;u3=;~oref=https%3A%2F%2Fwww.customink.com%2F
IP 142.250.74.2:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 9393b28661a65a763699c108887882eb
c237ba6491e6fb9ca57da33dd9d048ca8e86cfda
2bdce28c6fb3cb210861d4aba734ab7aedfc979a8fa273512a61d8cf8afc78b0
GET /ddm/fls/i/src=8494807;type=global;cat=allpv;ord=5050254464478;gtm=2wg9l0;auiddc=518400836.1663870154;u2=https%3A%2F%2Fwww.customink.com%2F;u1=%7C;u3=;~oref=https%3A%2F%2Fwww.customink.com%2F HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adservice.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 22 Sep 2022 18:09:14 GMT
expires: Thu, 22 Sep 2022 18:09:14 GMT
cache-control: private, max-age=0
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 177
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.no/ddm/fls/i/src=11319611;type=keyse0;cat=custo0;ord=1;num=2601253771180;gtm=2wg9l0;auiddc=518400836.1663870154;~oref=https%3A%2F%2Fwww.customink.com%2F
142.250.74.2200 OK 177 B URL HTTP/2 adservice.google.no/ddm/fls/i/src=11319611;type=keyse0;cat=custo0;ord=1;num=2601253771180;gtm=2wg9l0;auiddc=518400836.1663870154;~oref=https%3A%2F%2Fwww.customink.com%2F
IP 142.250.74.2:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 9393b28661a65a763699c108887882eb
c237ba6491e6fb9ca57da33dd9d048ca8e86cfda
2bdce28c6fb3cb210861d4aba734ab7aedfc979a8fa273512a61d8cf8afc78b0
GET /ddm/fls/i/src=11319611;type=keyse0;cat=custo0;ord=1;num=2601253771180;gtm=2wg9l0;auiddc=518400836.1663870154;~oref=https%3A%2F%2Fwww.customink.com%2F HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adservice.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 22 Sep 2022 18:09:14 GMT
expires: Thu, 22 Sep 2022 18:09:14 GMT
cache-control: private, max-age=0
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 177
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.no/ddm/fls/i/src=8494807;type=global;cat=uvisit;ord=1;num=5566540454399;gtm=2wg9l0;auiddc=518400836.1663870154;u2=https%3A%2F%2Fwww.customink.com%2F;u1=%7C;~oref=https%3A%2F%2Fwww.customink.com%2F
142.250.74.2200 OK 177 B URL HTTP/2 adservice.google.no/ddm/fls/i/src=8494807;type=global;cat=uvisit;ord=1;num=5566540454399;gtm=2wg9l0;auiddc=518400836.1663870154;u2=https%3A%2F%2Fwww.customink.com%2F;u1=%7C;~oref=https%3A%2F%2Fwww.customink.com%2F
IP 142.250.74.2:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 9393b28661a65a763699c108887882eb
c237ba6491e6fb9ca57da33dd9d048ca8e86cfda
2bdce28c6fb3cb210861d4aba734ab7aedfc979a8fa273512a61d8cf8afc78b0
GET /ddm/fls/i/src=8494807;type=global;cat=uvisit;ord=1;num=5566540454399;gtm=2wg9l0;auiddc=518400836.1663870154;u2=https%3A%2F%2Fwww.customink.com%2F;u1=%7C;~oref=https%3A%2F%2Fwww.customink.com%2F HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adservice.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 22 Sep 2022 18:09:14 GMT
expires: Thu, 22 Sep 2022 18:09:14 GMT
cache-control: private, max-age=0
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 177
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash b3c3325206e271f4df1b46446e49b172
b0e9cffbde61b39a2b74be08073abd22760d9242
e7e488b17589e707421efdc5ed472f7b8d660442b73df0db6af1cb23afbef75b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5948
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 18:09:14 GMT
Last-Modified: Thu, 22 Sep 2022 16:30:06 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 280
adservice.google.no/ddm/fls/i/src=11319611;type=keyse0;cat=custo00;ord=1;num=915226154146;gtm=2wg9l0;auiddc=518400836.1663870154;~oref=https%3A%2F%2Fwww.customink.com%2F
142.250.74.2200 OK 177 B URL HTTP/2 adservice.google.no/ddm/fls/i/src=11319611;type=keyse0;cat=custo00;ord=1;num=915226154146;gtm=2wg9l0;auiddc=518400836.1663870154;~oref=https%3A%2F%2Fwww.customink.com%2F
IP 142.250.74.2:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 9393b28661a65a763699c108887882eb
c237ba6491e6fb9ca57da33dd9d048ca8e86cfda
2bdce28c6fb3cb210861d4aba734ab7aedfc979a8fa273512a61d8cf8afc78b0
GET /ddm/fls/i/src=11319611;type=keyse0;cat=custo00;ord=1;num=915226154146;gtm=2wg9l0;auiddc=518400836.1663870154;~oref=https%3A%2F%2Fwww.customink.com%2F HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adservice.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 22 Sep 2022 18:09:14 GMT
expires: Thu, 22 Sep 2022 18:09:14 GMT
cache-control: private, max-age=0
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 177
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 51ca5853da6ab1b45b9b9d8425056853
b912e4d1ee63203030fa6efd1a77b5f02f4f86e0
a5dd1386ea0a4adc2678a71557841daec7a91a80330c7cf3dc845963c4addd3f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 18:09:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
s.amazon-adsystem.com/iu3?d=generic&ex-fargs=%3Fid%3Df6c2e158-3e16-24a5-4b81-41931d8da4b3%26type%3D55%26m%3D1&ex-fch=416613&ex-src=https://www.customink.com&ex-hargs=v%3D1.0%3Bc%3D1069608560801%3Bp%3DF6C2E158-3E16-24A5-4B81-41931D8DA4B3&cb=389961717030032300
52.46.130.91302 Found 0 B URL HTTP/1.1 s.amazon-adsystem.com/iu3?d=generic&ex-fargs=%3Fid%3Df6c2e158-3e16-24a5-4b81-41931d8da4b3%26type%3D55%26m%3D1&ex-fch=416613&ex-src=https://www.customink.com&ex-hargs=v%3D1.0%3Bc%3D1069608560801%3Bp%3DF6C2E158-3E16-24A5-4B81-41931D8DA4B3&cb=389961717030032300
IP 52.46.130.91:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /iu3?d=generic&ex-fargs=%3Fid%3Df6c2e158-3e16-24a5-4b81-41931d8da4b3%26type%3D55%26m%3D1&ex-fch=416613&ex-src=https://www.customink.com&ex-hargs=v%3D1.0%3Bc%3D1069608560801%3Bp%3DF6C2E158-3E16-24A5-4B81-41931D8DA4B3&cb=389961717030032300 HTTP/1.1
Host: s.amazon-adsystem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: Server
Date: Thu, 22 Sep 2022 18:09:14 GMT
Content-Length: 0
Connection: keep-alive
x-amz-rid: HG95288EQTJ6XFK0S0S0
Set-Cookie: ad-id=A9DpWVL-6UsBqog24TmogRA|t; Domain=.amazon-adsystem.com; Expires=Sat, 01-Apr-2023 18:09:14 GMT; Path=/; Secure; HttpOnly; SameSite=None
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Location: https://s.amazon-adsystem.com/iu3?d=generic&ex-fargs=%3Fid%3Df6c2e158-3e16-24a5-4b81-41931d8da4b3%26type%3D55%26m%3D1&ex-fch=416613&ex-src=https://www.customink.com&ex-hargs=v%3D1.0%3Bc%3D1069608560801%3Bp%3DF6C2E158-3E16-24A5-4B81-41931D8DA4B3&cb=389961717030032300&dcc=t
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
data.adxcel-ec2.com/pixel/?ad_log=referer&action=content&value=undefined&order_id=undefined&content_id=undefined&pixid=6709f282-197d-478d-bd53-2aa0a1cc895e>mcb=454655109
54.85.194.140200 OK 43 B URL HTTP/1.1 data.adxcel-ec2.com/pixel/?ad_log=referer&action=content&value=undefined&order_id=undefined&content_id=undefined&pixid=6709f282-197d-478d-bd53-2aa0a1cc895e>mcb=454655109
IP 54.85.194.140:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash a5098c60b3b0c879a2c7af6c68b7b53f
939f40be7f1aaf623f62886de4aaba3886df9b65
693d949d8c3fdc7fd4ace7c340b5f177a9f0c5be7bafee8bc93a7d88b7523d75
GET /pixel/?ad_log=referer&action=content&value=undefined&order_id=undefined&content_id=undefined&pixid=6709f282-197d-478d-bd53-2aa0a1cc895e>mcb=454655109 HTTP/1.1
Host: data.adxcel-ec2.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
s.amazon-adsystem.com/iu3?d=generic&ex-fargs=%3Fid%3Df6c2e158-3e16-24a5-4b81-41931d8da4b3%26type%3D55%26m%3D1&ex-fch=416613&ex-src=https://www.customink.com&ex-hargs=v%3D1.0%3Bc%3D1069608560801%3Bp%3DF6C2E158-3E16-24A5-4B81-41931D8DA4B3&cb=389961717030032300&dcc=t
52.46.130.91200 OK 65 B URL HTTP/1.1 s.amazon-adsystem.com/iu3?d=generic&ex-fargs=%3Fid%3Df6c2e158-3e16-24a5-4b81-41931d8da4b3%26type%3D55%26m%3D1&ex-fch=416613&ex-src=https://www.customink.com&ex-hargs=v%3D1.0%3Bc%3D1069608560801%3Bp%3DF6C2E158-3E16-24A5-4B81-41931D8DA4B3&cb=389961717030032300&dcc=t
IP 52.46.130.91:0
File type HTML document, ASCII text
Hash 22fdf49482d8200e8f305bbe262eff14
f254bd4053267c2cf46675613e689016d8b7f775
115d83ece49fd1c5769409aab9d78572eed86cd38a0556b4cdeeac82c83091d3
GET /iu3?d=generic&ex-fargs=%3Fid%3Df6c2e158-3e16-24a5-4b81-41931d8da4b3%26type%3D55%26m%3D1&ex-fch=416613&ex-src=https://www.customink.com&ex-hargs=v%3D1.0%3Bc%3D1069608560801%3Bp%3DF6C2E158-3E16-24A5-4B81-41931D8DA4B3&cb=389961717030032300&dcc=t HTTP/1.1
Host: s.amazon-adsystem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.customink.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Server
Date: Thu, 22 Sep 2022 18:09:14 GMT
Content-Type: text/html;charset=ISO-8859-1
Content-Length: 65
Connection: keep-alive
x-amz-rid: SHBX8GBCXVFB6MP00DRZ
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
l.hrzn-nxt.com/pxl?stm=1663870154069&e=pv&url=https%3A%2F%2Fwww.customink.com%2F&page=Custom%20T-shirts%20-%20Design%20T-shirts%2C%20Apparel%20%26%20Promo%20Products%20Online&tv=js-2.12.0&tna=nf&aid=customink-2228352f-80ba-4602-90a3-21b1a3ca1266&p=web&tz=UTC&lang=en-US&cs=UTF-8&res=1280x1024&cd=24&eid=90079de0-b22c-4480-8609-05ff648b6192&dtm=1663870154067&vp=1280x939&ds=1268x5412&vid=1&sid=2746d4d0-f6d6-4673-89e9-8dd720bd85e2&duid=da869488-6055-40cf-b7e1-14e20f06119f&fp=1326250463
54.230.111.129200 OK 43 B URL HTTP/2 l.hrzn-nxt.com/pxl?stm=1663870154069&e=pv&url=https%3A%2F%2Fwww.customink.com%2F&page=Custom%20T-shirts%20-%20Design%20T-shirts%2C%20Apparel%20%26%20Promo%20Products%20Online&tv=js-2.12.0&tna=nf&aid=customink-2228352f-80ba-4602-90a3-21b1a3ca1266&p=web&tz=UTC&lang=en-US&cs=UTF-8&res=1280x1024&cd=24&eid=90079de0-b22c-4480-8609-05ff648b6192&dtm=1663870154067&vp=1280x939&ds=1268x5412&vid=1&sid=2746d4d0-f6d6-4673-89e9-8dd720bd85e2&duid=da869488-6055-40cf-b7e1-14e20f06119f&fp=1326250463
IP 54.230.111.129:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash fb02f374b8f73825415db1bccd4bd76d
b103aa629cacdd90b39538a7561da7f8e49ad73f
caa849b179befa2645a8e2c474d2e82a76777a3305315ece911013e8ee9a916c
GET /pxl?stm=1663870154069&e=pv&url=https%3A%2F%2Fwww.customink.com%2F&page=Custom%20T-shirts%20-%20Design%20T-shirts%2C%20Apparel%20%26%20Promo%20Products%20Online&tv=js-2.12.0&tna=nf&aid=customink-2228352f-80ba-4602-90a3-21b1a3ca1266&p=web&tz=UTC&lang=en-US&cs=UTF-8&res=1280x1024&cd=24&eid=90079de0-b22c-4480-8609-05ff648b6192&dtm=1663870154067&vp=1280x939&ds=1268x5412&vid=1&sid=2746d4d0-f6d6-4673-89e9-8dd720bd85e2&duid=da869488-6055-40cf-b7e1-14e20f06119f&fp=1326250463 HTTP/1.1
Host: l.hrzn-nxt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 43
date: Thu, 22 Sep 2022 18:09:15 GMT
last-modified: Wed, 17 Apr 2019 18:13:20 GMT
etag: "fb02f374b8f73825415db1bccd4bd76d"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0GS9QxaLwrzoVl_c-_1dy3O4mcw3shEHFzbvaxq7PzqLayEnG3xLaA==
X-Firefox-Spdy: h2
www.customink.com/assets-inkpress/style_bitz/svg/icons/close-30c5ef7f22627e3f64d1d5f0dfad2871544c8381.svg
54.230.111.26200 OK 338 B URL HTTP/2 www.customink.com/assets-inkpress/style_bitz/svg/icons/close-30c5ef7f22627e3f64d1d5f0dfad2871544c8381.svg
IP 54.230.111.26:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (337)
Hash 301f22f761841cbe7806cc8c17b12bdf
c7d13dd81ca8deae77375af5efc454100d98773e
05d3569b37d2e4cf43f42399574403747a6454e3b95856daf000e9944201352c
GET /assets-inkpress/style_bitz/svg/icons/close-30c5ef7f22627e3f64d1d5f0dfad2871544c8381.svg HTTP/1.1
Host: www.customink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/assets-inkpress/style_bitz/style_bitz-30c5ef7f22627e3f64d1d5f0dfad2871544c8381.css
Cookie: optimizelyEndUserId=oeu1663870153476r0.29211388897556534; feature_shipping_guarantee_v2=control; page_tests=o%3A1663870153650%3Da%253As%25253Ashipguarantee-control%255Es%25253Ahomecta-test; feature_homepage_cta_test_aug_2022=test; fsTrigger=false; _gcl_au=1.1.518400836.1663870154; FPC=b4bc5b46-c917-4f4d-9d05-1bb2b674780c; FB Event ID=1663870153922.qinyfbyh; _ga=GA1.1.585473523.1663870154; _gid=GA1.2.1891393706.1663870154; _ga_9Z9D1BQPKN=GS1.1.1663870154.1.1.1663870154.60.0.0; _ga_HWLN19Z7EB=GS1.1.1663870154.1.0.1663870154.0.0.0; interactions=a%3Ao%253Acode%253Ds%25253ADL-1000%255Edate%253Dn%25253A1663870153583; ttarp_override=%2B1%20703-434-3214; _i18nco=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 338
date: Thu, 25 Aug 2022 16:17:46 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 25 Aug 2022 15:16:30 GMT
server: nginx
vary: Origin
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: T7B-jD9oBnYJqeoiof6u_LW10FnQmZVM0NQmGoQgfl4jqVIZ5uHxZQ==
age: 2425888
X-Firefox-Spdy: h2
cdn.pbbl.co/r/2663.js
143.204.55.99403 Forbidden 986 B IP 143.204.55.99:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a85b9f92b7925ee2dc5ff0343e77bed4
3b68df06d6bb9f88f03a748ef38544777ce70798
6e524d434812f5390f2a3f042cb1951ad580f54bba822795f4505756a3944083
GET /r/2663.js HTTP/1.1
Host: cdn.pbbl.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
server: CloudFront
date: Thu, 22 Sep 2022 18:09:15 GMT
content-type: text/html
content-length: 986
x-cache: Error from cloudfront
via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: mXEghwS1BL11R2kdi2CCXPpwMtvM6UGDLFfT1pXWAkf1nRmIGUP-Bg==
vary: Origin
X-Firefox-Spdy: h2
snap.licdn.com/li.lms-analytics/insight.min.js
23.36.76.121200 OK 3.1 kB URL HTTP/2 snap.licdn.com/li.lms-analytics/insight.min.js
IP 23.36.76.121:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (7751)
Hash 57efbbeb3e1d23c82b677511c67c8b0e
f927ba115ef4be362694c22850ddbdd1c1b054d1
873b38d80c8ff1ffcac23ecdb7fb2d17413ae3c217236d8e1e24574b1c4707c6
GET /li.lms-analytics/insight.min.js HTTP/1.1
Host: snap.licdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Fri, 12 Aug 2022 20:23:36 GMT
accept-ranges: bytes
content-type: application/x-javascript;charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=12278
date: Thu, 22 Sep 2022 18:09:15 GMT
content-length: 3063
x-cdn: AKAM
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-9Z9D1BQPKN&cid=585473523.1663870154>m=2oe9l0&aip=1&z=2010022835
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-9Z9D1BQPKN&cid=585473523.1663870154>m=2oe9l0&aip=1&z=2010022835
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-9Z9D1BQPKN&cid=585473523.1663870154>m=2oe9l0&aip=1&z=2010022835 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 22 Sep 2022 18:09:15 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b19c871f8d68a5cf507d6d29cb89da17
11197481d015eb6d7811381df5ee51d9ff31bb3b
48ce88e049d6f9a08ab2bd0812c037b4b4401e1a788cacefb539831978054b7c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 18:09:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
s.pinimg.com/ct/core.js
23.38.200.197200 OK 1.2 kB IP 23.38.200.197:0
File type ASCII text, with very long lines (1182), with no line terminators
Hash 7cac7e5d9e2b15cdc4ae76549dde174b
41a5b48387aef7bef116d52da64af00c504c7f86
d8261c0f4ae314e710ac7b15aa6bd0cf371de5b1cec41331ca12a1c392742ce6
GET /ct/core.js HTTP/1.1
Host: s.pinimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
etag: "7cac7e5d9e2b15cdc4ae76549dde174b"
cache-control: max-age=7200
accept-ranges: bytes
content-type: application/javascript
content-length: 1182
vary: Accept-Encoding, Origin
x-cdn: akamai
access-control-max-age: 86400
access-control-expose-headers: X-CDN
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 5f68499f2ba3b2c5aa7e979ee9b4d3a8
67a456fe80bd69aa2fbd0331ba343d1789509d0f
394e18527ce3ad7de2274de2e5e6a7f3fb390e7d6c4f7342ab485b7794e169e7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 18:09:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash f5e18d6ea246627995a7036b8fc5594d
740b9d3cd082f430fe4a88a7334d072fde35b30f
80b35e4cd010964c020ef6b16947e950cbb7b3884b4a32bbf1a1eeda0628c93c
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 22 Sep 2022 18:09:15 GMT
Last-Modified: Thu, 22 Sep 2022 16:35:32 GMT
Server: ECS (nyb/1D1B)
X-Cache: Miss from cloudfront
Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: D-VGNDcmlI_yxohWJa0nrvWM56V_GqK-TEuE5xQ33u7TSKOOf299qQ==
Age: 5623
www.customink.com/ink/i18nco?cc=NO
54.230.111.26200 OK 52 kB URL HTTP/2 www.customink.com/ink/i18nco?cc=NO
IP 54.230.111.26:0
Hash 0825e82ad246f384965602131f819d29
a8e8c1b3f56fdba2ab2d74b47d7ff8df3119bd37
088c8199063ed6e4187eb05f2cabe9f33b58ea0ab35770f9a3be551ace85bbf5
GET /ink/i18nco?cc=NO HTTP/1.1
Host: www.customink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Cookie: optimizelyEndUserId=oeu1663870153476r0.29211388897556534; feature_shipping_guarantee_v2=control; page_tests=o%3A1663870153650%3Da%253As%25253Ashipguarantee-control%255Es%25253Ahomecta-test; feature_homepage_cta_test_aug_2022=test; fsTrigger=false; _gcl_au=1.1.518400836.1663870154; FPC=b4bc5b46-c917-4f4d-9d05-1bb2b674780c; FB Event ID=1663870153922.qinyfbyh; _ga=GA1.1.585473523.1663870154; _gid=GA1.2.1891393706.1663870154; _ga_9Z9D1BQPKN=GS1.1.1663870154.1.1.1663870154.60.0.0; _ga_HWLN19Z7EB=GS1.1.1663870154.1.0.1663870154.0.0.0; interactions=a%3Ao%253Acode%253Ds%25253ADL-1000%255Edate%253Dn%25253A1663870153583; ttarp_override=%2B1%20703-434-3214
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
date: Thu, 22 Sep 2022 18:09:15 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.customink.com
access-control-request-method: GET
cache-control: max-age=0, private, must-revalidate
etag: W/"42755c7d64f992f4e8ae3dede422a57d"
server: nginx
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-request-id: abac465e-dedc-407f-bc3a-915ffc246cff
x-runtime: 0.012990
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: CZ0Q8FlpK6_MZgnooACXcvHfm5Eq_OBqgmP7vhGrzJkKgaTOU5yjkw==
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1b4b4a42564c1e563d2c09f8bf6b072d
b2f05a00fd6bd61edca005935c335ac82a7477fa
ff1ab724f949272d9ddfe1e623a7161577489a7759463997b9db347a6cfeebea
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2031
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 18:09:15 GMT
Last-Modified: Thu, 22 Sep 2022 17:35:25 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
px.ads.linkedin.com/collect?v=2&fmt=js&pid=3017114&time=1663870154588&url=https%3A%2F%2Fwww.customink.com%2F
13.107.42.14302 Found 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=3017114&time=1663870154588&url=https%3A%2F%2Fwww.customink.com%2F
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=3017114&time=1663870154588&url=https%3A%2F%2Fwww.customink.com%2F HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D3017114%26time%3D1663870154588%26url%3Dhttps%253A%252F%252Fwww.customink.com%252F%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQJK1Aky9yL-DgAAAYNmY7mWmokfKp8b0LnW-uSgwtFl6gfQcTh1rXfvjNGmTwlyMIGdxvKKZS8IBg; Max-Age=2592000; Expires=Sat, 22 Oct 2022 18:09:15 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
AnalyticsSyncHistory=AQIk8B88oNIOUAAAAYNmY7mW6rXP6HPxtOVf3eecUF4S0Udh3nz2WH1oHvfusevtt-XnrDTdedPUfQEkDNcZJA; Max-Age=2592000; Expires=Sat, 22 Oct 2022 18:09:15 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&96d6688b-75b3-4056-836d-f559a24ef39e"; domain=.linkedin.com; Path=/; Secure; Expires=Fri, 22-Sep-2023 18:09:15 GMT; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2391:u=1:x=1:i=1663870155:t=1663956555:v=2:sig=AQHpLoATVNvqu-QRCr6MowDTsrIR6zRy"; Expires=Fri, 23 Sep 2022 18:09:15 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXpR/WMxECzOORiGgh/Yw==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 878E4F3C002948BC999FF2ADEAF3A2FF Ref B: OSL30EDGE0113 Ref C: 2022-09-22T18:09:15Z
date: Thu, 22 Sep 2022 18:09:15 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 5f68499f2ba3b2c5aa7e979ee9b4d3a8
67a456fe80bd69aa2fbd0331ba343d1789509d0f
394e18527ce3ad7de2274de2e5e6a7f3fb390e7d6c4f7342ab485b7794e169e7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 18:09:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cnv.event.prod.bidr.io/log/cnv?tag_id=163&buzz_key=blisspoint&value=customink&segment_key=&order=bfaaf305-854a-4515-b4b8-88f88e520807.null&ord=8164889276790689537
52.214.24.32303 See Other 0 B URL HTTP/1.1 cnv.event.prod.bidr.io/log/cnv?tag_id=163&buzz_key=blisspoint&value=customink&segment_key=&order=bfaaf305-854a-4515-b4b8-88f88e520807.null&ord=8164889276790689537
IP 52.214.24.32:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /log/cnv?tag_id=163&buzz_key=blisspoint&value=customink&segment_key=&order=bfaaf305-854a-4515-b4b8-88f88e520807.null&ord=8164889276790689537 HTTP/1.1
Host: cnv.event.prod.bidr.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.customink.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 303 See Other
Date: Thu, 22 Sep 2022 18:09:15 GMT
location: https://cnv.event.prod.bidr.io/log/cnv?tag_id=163&buzz_key=blisspoint&value=customink&segment_key=&order=bfaaf305-854a-4515-b4b8-88f88e520807.null&ord=8164889276790689537&_bee_ppp=1
Server: gunicorn
set-cookie: checkForPermission=ok; Domain=bidr.io; expires=Thu, 22 Sep 2022 18:19:15 GMT; Path=/; SameSite=None; Secure
strict-transport-security: max-age=2592000; includeSubDomains
Content-Length: 0
Connection: keep-alive
s.pinimg.com/ct/lib/main.55e552f9.js
23.38.200.197200 OK 19 kB URL HTTP/2 s.pinimg.com/ct/lib/main.55e552f9.js
IP 23.38.200.197:0
File type Unicode text, UTF-8 text, with very long lines (54284), with no line terminators
Hash 84c1602180f73853dc1e35f7296bdf7d
40aea44ea928e8d539381759b791f5c70f6d4c82
6b2faea09b5d5015a36ab4300e1034e1907895b40249e5fd11b42a66fbd21dac
GET /ct/lib/main.55e552f9.js HTTP/1.1
Host: s.pinimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "84c1602180f73853dc1e35f7296bdf7d"
content-encoding: gzip
accept-ranges: bytes
content-type: application/javascript
content-length: 18601
cache-control: max-age=1209600
vary: Accept-Encoding, Origin
x-cdn: akamai
access-control-max-age: 86400
access-control-expose-headers: X-CDN
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
bat.bing.com/bat.js
204.79.197.200200 OK 11 kB IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (38826), with no line terminators
Hash 293ae3e0fc8b0d5c143fdf9d8490228d
3976c659b908e70818a3a1ac71860b497fe2d1a9
04a840d967ae836e14179bde574cabf14a1fc871182ca0f8193e7a0b06c727ab
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11367
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 28 Jul 2022 17:32:37 GMT
accept-ranges: bytes
etag: "80a8697a8a2d81:0"
vary: Accept-Encoding
set-cookie: MUID=159BD251353F6FD73BFEC07634686E65; domain=.bing.com; expires=Tue, 17-Oct-2023 18:09:15 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 14088CC773C045E88B7D6E14C3C5E530 Ref B: OSL30EDGE0317 Ref C: 2022-09-22T18:09:15Z
date: Thu, 22 Sep 2022 18:09:14 GMT
X-Firefox-Spdy: h2
region1.analytics.google.com/g/collect?v=2&tid=G-9Z9D1BQPKN>m=2oe9l0&_p=1187287194&_gaz=1&cid=585473523.1663870154&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1663870154&sct=1&seg=0&dl=https%3A%2F%2Fwww.customink.com%2F&dt=Custom%20T-shirts%20-%20Design%20T-shirts%2C%20Apparel%20%26%20Promo%20Products%20Online&en=page_view&_fv=1&_ss=2
216.239.34.36204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-9Z9D1BQPKN>m=2oe9l0&_p=1187287194&_gaz=1&cid=585473523.1663870154&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1663870154&sct=1&seg=0&dl=https%3A%2F%2Fwww.customink.com%2F&dt=Custom%20T-shirts%20-%20Design%20T-shirts%2C%20Apparel%20%26%20Promo%20Products%20Online&en=page_view&_fv=1&_ss=2
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-9Z9D1BQPKN>m=2oe9l0&_p=1187287194&_gaz=1&cid=585473523.1663870154&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1663870154&sct=1&seg=0&dl=https%3A%2F%2Fwww.customink.com%2F&dt=Custom%20T-shirts%20-%20Design%20T-shirts%2C%20Apparel%20%26%20Promo%20Products%20Online&en=page_view&_fv=1&_ss=2 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.customink.com
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.customink.com
date: Thu, 22 Sep 2022 18:09:15 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.customink.com/assets-inkpress/style_bitz/i18nco/1-delivery-30c5ef7f22627e3f64d1d5f0dfad2871544c8381.png
54.230.111.26200 OK 48 kB URL HTTP/2 www.customink.com/assets-inkpress/style_bitz/i18nco/1-delivery-30c5ef7f22627e3f64d1d5f0dfad2871544c8381.png
IP 54.230.111.26:0
File type PNG image data, 694 x 482, 8-bit colormap, non-interlaced\012- data
Hash b42f0cb283580b83c1c953385c9debc7
3e11769a9bef4552675071744a83dbce59c06ee6
ff3a3058bc79bed6b2ea3e25ffc60c57dd0744b1b5af85f164e1eeeb5cdd21dc
GET /assets-inkpress/style_bitz/i18nco/1-delivery-30c5ef7f22627e3f64d1d5f0dfad2871544c8381.png HTTP/1.1
Host: www.customink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/assets-inkpress/style_bitz/style_bitz-30c5ef7f22627e3f64d1d5f0dfad2871544c8381.css
Cookie: optimizelyEndUserId=oeu1663870153476r0.29211388897556534; feature_shipping_guarantee_v2=control; page_tests=o%3A1663870153650%3Da%253As%25253Ashipguarantee-control%255Es%25253Ahomecta-test; feature_homepage_cta_test_aug_2022=test; fsTrigger=false; _gcl_au=1.1.518400836.1663870154; FPC=b4bc5b46-c917-4f4d-9d05-1bb2b674780c; FB Event ID=1663870153922.qinyfbyh; _ga=GA1.1.585473523.1663870154; _gid=GA1.2.1891393706.1663870154; _ga_9Z9D1BQPKN=GS1.1.1663870154.1.1.1663870154.60.0.0; _ga_HWLN19Z7EB=GS1.1.1663870154.1.0.1663870154.0.0.0; interactions=a%3Ao%253Acode%253Ds%25253ADL-1000%255Edate%253Dn%25253A1663870153583; ttarp_override=%2B1%20703-434-3214; _i18nco=1; _gat=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 47829
date: Thu, 25 Aug 2022 15:48:30 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 25 Aug 2022 15:16:30 GMT
server: nginx
vary: Origin
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: M_CO4u7m7bbFzklZ3ruvdFdlfHEB2NSxvS69yGM_sSS-RPNNbNi8rA==
age: 2427645
X-Firefox-Spdy: h2
www.customink.com/stylesheets/promos/coupons.css
54.230.111.26404 Not Found 13 kB URL HTTP/2 www.customink.com/stylesheets/promos/coupons.css
IP 54.230.111.26:0
Hash b671d809bacd5f1f47d903aa6b7d2d07
03284e7167bb5853dbe35250131fd52add66b3be
10b30cb003810254a33d02664376cecb7ffe5c68207a382f4c3235ed661d1037
GET /stylesheets/promos/coupons.css HTTP/1.1
Host: www.customink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/ink/i18nco?cc=NO
Cookie: optimizelyEndUserId=oeu1663870153476r0.29211388897556534; feature_shipping_guarantee_v2=control; page_tests=o%3A1663870153650%3Da%253As%25253Ashipguarantee-control%255Es%25253Ahomecta-test; feature_homepage_cta_test_aug_2022=test; fsTrigger=false; _gcl_au=1.1.518400836.1663870154; FPC=b4bc5b46-c917-4f4d-9d05-1bb2b674780c; FB Event ID=1663870153922.qinyfbyh; _ga=GA1.1.585473523.1663870154; _gid=GA1.2.1891393706.1663870154; _ga_9Z9D1BQPKN=GS1.1.1663870154.1.1.1663870154.60.0.0; _ga_HWLN19Z7EB=GS1.1.1663870154.1.0.1663870154.0.0.0; interactions=a%3Ao%253Acode%253Ds%25253ADL-1000%255Edate%253Dn%25253A1663870153583; ttarp_override=%2B1%20703-434-3214; _i18nco=1; _gat=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=utf-8
date: Thu, 22 Sep 2022 18:09:15 GMT
cache-control: max-age=3600, public
server: nginx
strict-transport-security: max-age=300
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-request: 2e800992-b2e3-42de-8915-213accd1f98a
x-runtime: 0.017939
x-xss-protection: 1; mode=block
content-encoding: gzip
vary: Accept-Encoding
x-cache: Error from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: jdF4Dk6JK9GE6Lz7W5SWjzVeAFes78LkLBSIRjZstBr-D62fZSVceA==
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 77f9b5e468180a8976a641e40dceedbf
9873db160721dc9f41d3ff2d711db700d6f5d4d7
cae6929c00ed37fc097432c9ac1d6800244479d3877b17662c67bafeeff23aba
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 18:09:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.customink.com/assets-inkpress/style_bitz/i18nco/4-support-30c5ef7f22627e3f64d1d5f0dfad2871544c8381.jpg
54.230.111.26200 OK 35 kB URL HTTP/2 www.customink.com/assets-inkpress/style_bitz/i18nco/4-support-30c5ef7f22627e3f64d1d5f0dfad2871544c8381.jpg
IP 54.230.111.26:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, extended sequential, precision 8, 499x490, components 3\012- data
Hash 7890443ff65498bf1811d0cd04223c86
546ff5262448a627dba2dd44b2797d892fd58329
423ba5e24f25a27f46342c33f83318f5b7dc4458901189112c1dd800a70a0eb8
GET /assets-inkpress/style_bitz/i18nco/4-support-30c5ef7f22627e3f64d1d5f0dfad2871544c8381.jpg HTTP/1.1
Host: www.customink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/assets-inkpress/style_bitz/style_bitz-30c5ef7f22627e3f64d1d5f0dfad2871544c8381.css
Cookie: optimizelyEndUserId=oeu1663870153476r0.29211388897556534; feature_shipping_guarantee_v2=control; page_tests=o%3A1663870153650%3Da%253As%25253Ashipguarantee-control%255Es%25253Ahomecta-test; feature_homepage_cta_test_aug_2022=test; fsTrigger=false; _gcl_au=1.1.518400836.1663870154; FPC=b4bc5b46-c917-4f4d-9d05-1bb2b674780c; FB Event ID=1663870153922.qinyfbyh; _ga=GA1.1.585473523.1663870154; _gid=GA1.2.1891393706.1663870154; _ga_9Z9D1BQPKN=GS1.1.1663870154.1.1.1663870154.60.0.0; _ga_HWLN19Z7EB=GS1.1.1663870154.1.0.1663870154.0.0.0; interactions=a%3Ao%253Acode%253Ds%25253ADL-1000%255Edate%253Dn%25253A1663870153583; ttarp_override=%2B1%20703-434-3214; _i18nco=1; _gat=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 34956
date: Thu, 25 Aug 2022 15:48:30 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 25 Aug 2022 15:16:30 GMT
server: nginx
vary: Origin
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: F2yZasMg0Z5m0iilUDNuuaBNOctbGSRpOFcGDSrl9WC5jHhLXtGepQ==
age: 2427645
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 44002a6e6b338defadbd7083ee955851
fb400534e6c640426b4562ab88a081221232084a
e6784eb9510065132bfdbfd2044636bd30ef64be60d0549f5884ed659f4f5adb
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 18:09:15 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 04:31:54 GMT
Expires: Tue, 27 Sep 2022 04:31:53 GMT
Etag: "fb400534e6c640426b4562ab88a081221232084a"
Cache-Control: max-age=382357,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74ecfd969b680b06-OSL
us.creativecdn.com/tags?type=script&id=pr_oUmt0LP6DaxLCcmDvho7&ncm=1&id=pr_oUmt0LP6DaxLCcmDvho7_uid_unknown
185.184.10.30302 Found 0 B URL HTTP/2 us.creativecdn.com/tags?type=script&id=pr_oUmt0LP6DaxLCcmDvho7&ncm=1&id=pr_oUmt0LP6DaxLCcmDvho7_uid_unknown
IP 185.184.10.30:0
ASN #203690 Rtb House S.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tags?type=script&id=pr_oUmt0LP6DaxLCcmDvho7&ncm=1&id=pr_oUmt0LP6DaxLCcmDvho7_uid_unknown HTTP/1.1
Host: us.creativecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 22 Sep 2022 18:09:15 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-max-age: 3600
vary: Origin
expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
set-cookie: u=URcBL00j2nByJ48aobIq;Path=/;Domain=.creativecdn.com;Expires=Fri, 22-Sep-2023 18:09:15 GMT;Max-Age=31536000;Secure;SameSite=None
ts=1663870155;Path=/;Domain=.creativecdn.com;Expires=Fri, 22-Sep-2023 18:09:15 GMT;Max-Age=31536000;Secure;SameSite=None
location: https://us.creativecdn.com/tags?type=script&id=pr_oUmt0LP6DaxLCcmDvho7&ncm=1&id=pr_oUmt0LP6DaxLCcmDvho7_uid_unknown&tc=1
content-length: 0
X-Firefox-Spdy: h2
stats.g.doubleclick.net/g/collect?v=2&tid=G-9Z9D1BQPKN&cid=585473523.1663870154>m=2oe9l0&aip=1
142.251.1.155204 No Content 0 B URL HTTP/2 stats.g.doubleclick.net/g/collect?v=2&tid=G-9Z9D1BQPKN&cid=585473523.1663870154>m=2oe9l0&aip=1
IP 142.251.1.155:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-9Z9D1BQPKN&cid=585473523.1663870154>m=2oe9l0&aip=1 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.customink.com
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.customink.com
date: Thu, 22 Sep 2022 18:09:15 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-HWLN19Z7EB>m=2oe9l0&_p=1187287194&cid=585473523.1663870154&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&dl=https%3A%2F%2Fwww.customink.com%2Fv&sid=1663870154&sct=1&seg=0&dt=Custom%20T-shirts%20-%20Design%20T-shirts%2C%20Apparel%20%26%20Promo%20Products%20Online&en=page_view&_fv=1&_ss=1&epn.locatedVisit=0&epn.locationZip=0
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-HWLN19Z7EB>m=2oe9l0&_p=1187287194&cid=585473523.1663870154&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&dl=https%3A%2F%2Fwww.customink.com%2Fv&sid=1663870154&sct=1&seg=0&dt=Custom%20T-shirts%20-%20Design%20T-shirts%2C%20Apparel%20%26%20Promo%20Products%20Online&en=page_view&_fv=1&_ss=1&epn.locatedVisit=0&epn.locationZip=0
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-HWLN19Z7EB>m=2oe9l0&_p=1187287194&cid=585473523.1663870154&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&dl=https%3A%2F%2Fwww.customink.com%2Fv&sid=1663870154&sct=1&seg=0&dt=Custom%20T-shirts%20-%20Design%20T-shirts%2C%20Apparel%20%26%20Promo%20Products%20Online&en=page_view&_fv=1&_ss=1&epn.locatedVisit=0&epn.locationZip=0 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.customink.com
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
access-control-allow-origin: https://www.customink.com
date: Thu, 22 Sep 2022 18:09:15 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 32643c543da3a174ee82c37cffc3fea8
d9bbea1b427c231bd1dd4685f706075b4bb8f7e5
f3e552f7bca98c4d67a58068b94cc9436d84aed4ca871a487014f25ef97e042b
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 22 Sep 2022 18:09:15 GMT
Last-Modified: Thu, 22 Sep 2022 17:13:14 GMT
Server: ECS (nyb/1D2D)
X-Cache: Miss from cloudfront
Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: -D-u9iKKCENY-KN2DlwI1RHW1k25vuS5oD1ey8sVv6qYOHHAMzimFw==
Age: 3361
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 35343b6981ed4c9eb2cd90bc8c2146cd
4e49432e50195a2bc528fb1745a2899306c79db8
cf55f53534e3e8b62513618cda90832a7b9bcd0d15b1a8f6bb51db6eb60daefd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 18:09:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f08468f742203b67cafd4eb9d919877c
0ab9c6875fa317315e2e7dcdb1ba8c5d28bfef68
b66d3243be1a67a813352f3c2efa4259d4e0c7960b2206a381b52ee97dc3ff23
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 18:09:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 44002a6e6b338defadbd7083ee955851
fb400534e6c640426b4562ab88a081221232084a
e6784eb9510065132bfdbfd2044636bd30ef64be60d0549f5884ed659f4f5adb
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 18:09:15 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 04:31:54 GMT
Expires: Tue, 27 Sep 2022 04:31:53 GMT
Etag: "fb400534e6c640426b4562ab88a081221232084a"
Cache-Control: max-age=382357,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74ecfd96eba40b06-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 44002a6e6b338defadbd7083ee955851
fb400534e6c640426b4562ab88a081221232084a
e6784eb9510065132bfdbfd2044636bd30ef64be60d0549f5884ed659f4f5adb
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 18:09:15 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 04:31:54 GMT
Expires: Tue, 27 Sep 2022 04:31:53 GMT
Etag: "fb400534e6c640426b4562ab88a081221232084a"
Cache-Control: max-age=382357,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74ecfd96ed180b51-OSL
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 77f9b5e468180a8976a641e40dceedbf
9873db160721dc9f41d3ff2d711db700d6f5d4d7
cae6929c00ed37fc097432c9ac1d6800244479d3877b17662c67bafeeff23aba
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 18:09:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
logx.optimizely.com/v1/events
44.196.18.144204 No Content 0 B URL HTTP/1.1 logx.optimizely.com/v1/events
IP 44.196.18.144:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v1/events HTTP/1.1
Host: logx.optimizely.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 738
Origin: https://www.customink.com
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.customink.com
Access-Control-Expose-Headers: X-Results-Data-Source
Content-Type: text/plain
Date: Thu, 22 Sep 2022 18:09:15 GMT
Server: nginx/1.21.0
Timing-Allow-Origin: *
X-Request-Id: 4c4529da-6777-47b0-b935-fb456a9b8aad
Connection: keep-alive
cdn.pbbl.co/r/2663.js
143.204.55.99403 Forbidden 986 B IP 143.204.55.99:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 918f8228705497e6fa16f05b603febf8
f6817f62de9be696ced16a42d65a9c53b397e4f5
1769343f54950234ac348cdac3ea489947a18ac4679f6b90e595522032fdbd14
GET /r/2663.js HTTP/1.1
Host: cdn.pbbl.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
server: CloudFront
date: Thu, 22 Sep 2022 18:09:15 GMT
content-type: text/html
content-length: 986
x-cache: Error from cloudfront
via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: b1IsGAjLe9i1mW4TEwYS9Ow_NCnjXPRs6lawkAUdx5S_18C9VssODw==
vary: Origin
X-Firefox-Spdy: h2
s.amazon-adsystem.com/iu3?d=generic&ex-fargs=%3Fid%3Df6c2e158-3e16-24a5-4b81-41931d8da4b3%26type%3D55%26m%3D1&ex-fch=416613&ex-src=https://www.customink.com&ex-hargs=v%3D1.0%3Bc%3D1069608560801%3Bp%3DF6C2E158-3E16-24A5-4B81-41931D8DA4B3&cb=836642129426759200
52.46.130.91302 Found 0 B URL HTTP/1.1 s.amazon-adsystem.com/iu3?d=generic&ex-fargs=%3Fid%3Df6c2e158-3e16-24a5-4b81-41931d8da4b3%26type%3D55%26m%3D1&ex-fch=416613&ex-src=https://www.customink.com&ex-hargs=v%3D1.0%3Bc%3D1069608560801%3Bp%3DF6C2E158-3E16-24A5-4B81-41931D8DA4B3&cb=836642129426759200
IP 52.46.130.91:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /iu3?d=generic&ex-fargs=%3Fid%3Df6c2e158-3e16-24a5-4b81-41931d8da4b3%26type%3D55%26m%3D1&ex-fch=416613&ex-src=https://www.customink.com&ex-hargs=v%3D1.0%3Bc%3D1069608560801%3Bp%3DF6C2E158-3E16-24A5-4B81-41931D8DA4B3&cb=836642129426759200 HTTP/1.1
Host: s.amazon-adsystem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: Server
Date: Thu, 22 Sep 2022 18:09:15 GMT
Content-Length: 0
Connection: keep-alive
x-amz-rid: 1Q9T9ZB044W02RQZ8P4S
Set-Cookie: ad-id=AyamQGWY4kBkkgHpQKfalj8|t; Domain=.amazon-adsystem.com; Expires=Sat, 01-Apr-2023 18:09:15 GMT; Path=/; Secure; HttpOnly; SameSite=None
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Location: https://s.amazon-adsystem.com/iu3?d=generic&ex-fargs=%3Fid%3Df6c2e158-3e16-24a5-4b81-41931d8da4b3%26type%3D55%26m%3D1&ex-fch=416613&ex-src=https://www.customink.com&ex-hargs=v%3D1.0%3Bc%3D1069608560801%3Bp%3DF6C2E158-3E16-24A5-4B81-41931D8DA4B3&cb=836642129426759200&dcc=t
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
us.creativecdn.com/tags?type=script&id=pr_oUmt0LP6DaxLCcmDvho7&ncm=1&id=pr_oUmt0LP6DaxLCcmDvho7_uid_unknown
185.184.10.30302 Found 0 B URL HTTP/2 us.creativecdn.com/tags?type=script&id=pr_oUmt0LP6DaxLCcmDvho7&ncm=1&id=pr_oUmt0LP6DaxLCcmDvho7_uid_unknown
IP 185.184.10.30:0
ASN #203690 Rtb House S.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tags?type=script&id=pr_oUmt0LP6DaxLCcmDvho7&ncm=1&id=pr_oUmt0LP6DaxLCcmDvho7_uid_unknown HTTP/1.1
Host: us.creativecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Thu, 22 Sep 2022 18:09:15 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-max-age: 3600
vary: Origin
expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
set-cookie: u=FkfJIVx1PTvvjyEcTfXK;Path=/;Domain=.creativecdn.com;Expires=Fri, 22-Sep-2023 18:09:15 GMT;Max-Age=31536000;Secure;SameSite=None
ts=1663870155;Path=/;Domain=.creativecdn.com;Expires=Fri, 22-Sep-2023 18:09:15 GMT;Max-Age=31536000;Secure;SameSite=None
location: https://us.creativecdn.com/tags?type=script&id=pr_oUmt0LP6DaxLCcmDvho7&ncm=1&id=pr_oUmt0LP6DaxLCcmDvho7_uid_unknown&tc=1
content-length: 0
X-Firefox-Spdy: h2
bat.bing.com/action/0?ti=20042032&Ver=2&mid=688fc398-1bc7-4e3d-9ac1-68d79f5037f8&sid=aad73fa03aa111eda730abba99455c40&vid=aad749503aa111edb1895d4a6352e93c&vids=0&msclkid=N&gc=USD&en=Y&sw=1280&sh=1024&sc=24&evt=custom&ifm=1&rn=985310
204.79.197.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=20042032&Ver=2&mid=688fc398-1bc7-4e3d-9ac1-68d79f5037f8&sid=aad73fa03aa111eda730abba99455c40&vid=aad749503aa111edb1895d4a6352e93c&vids=0&msclkid=N&gc=USD&en=Y&sw=1280&sh=1024&sc=24&evt=custom&ifm=1&rn=985310
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=20042032&Ver=2&mid=688fc398-1bc7-4e3d-9ac1-68d79f5037f8&sid=aad73fa03aa111eda730abba99455c40&vid=aad749503aa111edb1895d4a6352e93c&vids=0&msclkid=N&gc=USD&en=Y&sw=1280&sh=1024&sc=24&evt=custom&ifm=1&rn=985310 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=105D790EEE23628807546B29EF746329; domain=.bing.com; expires=Tue, 17-Oct-2023 18:09:15 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 8388575925834303910353390C7F16C6 Ref B: OSL30EDGE0317 Ref C: 2022-09-22T18:09:15Z
date: Thu, 22 Sep 2022 18:09:14 GMT
X-Firefox-Spdy: h2
bat.bing.com/action/0?ti=20042032&Ver=2&mid=688fc398-1bc7-4e3d-9ac1-68d79f5037f8&sid=aad73fa03aa111eda730abba99455c40&vid=aad749503aa111edb1895d4a6352e93c&vids=0&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Custom%20T-shirts%20-%20Design%20Your%20Own%20T-Shirts%20Online%20-%20Free%20Shipping!&p=https%3A%2F%2Fwww.customink.com%2F&r=<=379&evt=pageLoad&ifm=1&sv=1&rn=110821
204.79.197.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=20042032&Ver=2&mid=688fc398-1bc7-4e3d-9ac1-68d79f5037f8&sid=aad73fa03aa111eda730abba99455c40&vid=aad749503aa111edb1895d4a6352e93c&vids=0&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Custom%20T-shirts%20-%20Design%20Your%20Own%20T-Shirts%20Online%20-%20Free%20Shipping!&p=https%3A%2F%2Fwww.customink.com%2F&r=<=379&evt=pageLoad&ifm=1&sv=1&rn=110821
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=20042032&Ver=2&mid=688fc398-1bc7-4e3d-9ac1-68d79f5037f8&sid=aad73fa03aa111eda730abba99455c40&vid=aad749503aa111edb1895d4a6352e93c&vids=0&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Custom%20T-shirts%20-%20Design%20Your%20Own%20T-Shirts%20Online%20-%20Free%20Shipping!&p=https%3A%2F%2Fwww.customink.com%2F&r=<=379&evt=pageLoad&ifm=1&sv=1&rn=110821 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=20F4B89F0AB8690E0A06AAB80BEF685C; domain=.bing.com; expires=Tue, 17-Oct-2023 18:09:15 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 0D04B7CCEBB8448191A1A73776456223 Ref B: OSL30EDGE0317 Ref C: 2022-09-22T18:09:15Z
date: Thu, 22 Sep 2022 18:09:14 GMT
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14667
Expires: Thu, 22 Sep 2022 22:13:42 GMT
Date: Thu, 22 Sep 2022 18:09:15 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14667
Expires: Thu, 22 Sep 2022 22:13:42 GMT
Date: Thu, 22 Sep 2022 18:09:15 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14667
Expires: Thu, 22 Sep 2022 22:13:42 GMT
Date: Thu, 22 Sep 2022 18:09:15 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf89a4b3-f586-4870-ab26-efb054f637fd.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf89a4b3-f586-4870-ab26-efb054f637fd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 91c56f0b9810bfdd84e10a626b89e389
15d83e44d568938b6c9c87201e898cedb3edec0a
942de9764e1c408f7512759774aab0479db201e6fae15ccc39e653adae4cb86f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf89a4b3-f586-4870-ab26-efb054f637fd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8678
x-amzn-requestid: c671a9ab-c5d0-4743-b13e-cc9a47e3d2fe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1F0vEThIAMFSwQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b8351-17ed13811d3833ea00a34423;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:34:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 2Oem-Kw-aCUa2rA9B9-7CDYcZ-G968tFPnsrL5wJ9Dia43T5u6RDtg==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 21:34:09 GMT
etag: "15d83e44d568938b6c9c87201e898cedb3edec0a"
content-type: image/jpeg
age: 74106
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
s.pinimg.com/ct/lib/main.1feae7a5.js
23.38.200.197200 OK 19 kB URL HTTP/2 s.pinimg.com/ct/lib/main.1feae7a5.js
IP 23.38.200.197:0
File type Unicode text, UTF-8 text, with very long lines (54788), with no line terminators
Hash b7ccb3e1986b3321a2af7d62c59f7c9b
776721adff939e20a836cc15ebb5d24905bc1b33
c5ffd706c4724532ec1ece530724a8464e56df22d1698cc3197e5c76362873c4
GET /ct/lib/main.1feae7a5.js HTTP/1.1
Host: s.pinimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
etag: "b7ccb3e1986b3321a2af7d62c59f7c9b"
content-encoding: gzip
accept-ranges: bytes
content-type: application/javascript
content-length: 18775
cache-control: max-age=1209600
vary: Accept-Encoding, Origin
x-cdn: akamai
access-control-max-age: 86400
access-control-expose-headers: X-CDN
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06a0b4c5-4223-42cf-b012-2e09b250c8c1.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06a0b4c5-4223-42cf-b012-2e09b250c8c1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c2db94039cb675cb250519fe57b2b3c9
37222a70df5d9a69073b4b32ebc3a5da60006001
444f4359ac25747e7c5d7e09202f195d407bc94a4933ac7ebbbaf9839bf59aff
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06a0b4c5-4223-42cf-b012-2e09b250c8c1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12048
x-amzn-requestid: bc551b18-fddb-4502-8c11-b8de83d75def
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YwlKzF9FoAMFp_w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6329b578-7e030b2e0af1d1c309d2dde6;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 12:43:36 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: dRyKwUtxiHGz_bqMMSlRKS1cDNhKm_g1ocpZLmE15k8owH789jueWA==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 22:19:10 GMT
age: 71405
etag: "37222a70df5d9a69073b4b32ebc3a5da60006001"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
accdn.lpsnmedia.net/api/account/23156914/configuration/le-campaigns/zones?fields=id&fields=zoneValue&cb=lpZonesStaticCB
178.249.101.99200 OK 15 kB URL HTTP/2 accdn.lpsnmedia.net/api/account/23156914/configuration/le-campaigns/zones?fields=id&fields=zoneValue&cb=lpZonesStaticCB
IP 178.249.101.99:0
Hash 8cd556128671ef0e0b92dc93e2f4ba65
1a5d5e7f898ccda439492b1a25904496fd8a8e68
3b93af87560f3338a0cd84a23916c37d4120c96ecea81ccee69bdb37060b85b1
GET /api/account/23156914/configuration/le-campaigns/zones?fields=id&fields=zoneValue&cb=lpZonesStaticCB HTTP/1.1
Host: accdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 22 Sep 2022 18:09:15 GMT
content-type: application/javascript
set-cookie: ADRUM_BTa=R:26|g:90318315-752c-4fdd-9b85-109ee2fb2455; Max-Age=30; Expires=Thu, 22-Sep-2022 18:09:45 GMT; Path=/
ADRUM_BTa=R:26|g:90318315-752c-4fdd-9b85-109ee2fb2455|n:livepersonltd_93a08561-b03e-475e-b29b-9ad4aa207daf; Max-Age=30; Expires=Thu, 22-Sep-2022 18:09:45 GMT; Path=/
SameSite=None; Max-Age=30; Expires=Thu, 22-Sep-2022 18:09:45 GMT; Path=/; Secure
ADRUM_BT1=R:26|i:2241585; Max-Age=30; Expires=Thu, 22-Sep-2022 18:09:45 GMT; Path=/
ADRUM_BT1=R:26|i:2241585|e:11; Max-Age=30; Expires=Thu, 22-Sep-2022 18:09:45 GMT; Path=/
vary: Accept
expires: Thu, 22 Sep 2022 18:10:15 GMT
x-envoy-upstream-service-time: 2
server: ws
strict-transport-security: max-age=99999999999; includeSubDomains
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
x-cache-status: EXPIRED
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb0692-30b9-4b69-a748-f7a4474a72e0.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb0692-30b9-4b69-a748-f7a4474a72e0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9becda6e892a190dbbc63216ae697506
ba3369e1827d8f01ca10acb8648195847dd02ffd
d71dd28e0ff260326ba0c30748fa11160f4544c2a264d3a3dc361af0de9fd283
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb0692-30b9-4b69-a748-f7a4474a72e0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11286
x-amzn-requestid: 7263b60d-fffe-4c0b-8de5-59dc9ac92a47
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1GwZHOaIAMFSQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b84cf-62e160b156b587cc21c7fda5;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:40:31 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: QxgrVMX7xwI6qE3T3-LRS3JWoJauPyvCSb9TacW9-ktw-BIq5PSF-g==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 21:48:26 GMT
etag: "ba3369e1827d8f01ca10acb8648195847dd02ffd"
content-type: image/jpeg
age: 73249
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2f739db-1c27-4929-8aff-997c0f66b2ed.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2f739db-1c27-4929-8aff-997c0f66b2ed.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a5edcd9aee78a6cacc9241b47cbce598
f95b843029e84dbb188427a8c2ff8c9f32740465
6a56c3d0eb1d641e565d3d7d31b42be03bdad30beb20b994ffc9a6f2aaceee1e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2f739db-1c27-4929-8aff-997c0f66b2ed.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5650
x-amzn-requestid: 6badb939-afe6-4432-a0ad-3a2b7f85a7e0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y1G-rFbuIAMFTeA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632b852a-3e9ac3331503b41d5e734a01;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 21:42:02 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: PeFdtN-ow0NE39XAV9pCHX9VSno5L9z56rg-T6Bd1fks7f1ESDDzWA==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Sep 2022 21:48:27 GMT
etag: "f95b843029e84dbb188427a8c2ff8c9f32740465"
content-type: image/jpeg
age: 73248
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd654e30-611f-4c64-b1ad-43ca9fdedc0e.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd654e30-611f-4c64-b1ad-43ca9fdedc0e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c0201d377c57a684452c0d26372e674d
3829f81048cc63b5f0d1e82dfbe3b8e31646e733
efa055dc93267be2dddd94b334c0655c2e1f1682467fd738e013a778aea175b9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd654e30-611f-4c64-b1ad-43ca9fdedc0e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14397
x-amzn-requestid: 18122f14-4c48-43b3-b312-218f3ae84d93
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yv1B8EVfoAMF3dQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63296872-3d23a04565d70f3c5403007b;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 07:14:58 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 9zc5SsL1SB9GtwMkVWcNLJzC-MfOd-5TiQck5s6-MV23RWPqWPAgtA==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 18:00:45 GMT
age: 510
etag: "3829f81048cc63b5f0d1e82dfbe3b8e31646e733"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 44002a6e6b338defadbd7083ee955851
fb400534e6c640426b4562ab88a081221232084a
e6784eb9510065132bfdbfd2044636bd30ef64be60d0549f5884ed659f4f5adb
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 18:09:15 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 04:31:54 GMT
Expires: Tue, 27 Sep 2022 04:31:53 GMT
Etag: "fb400534e6c640426b4562ab88a081221232084a"
Cache-Control: max-age=382357,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74ecfd969ec5b509-OSL
s.amazon-adsystem.com/iu3?d=generic&ex-fargs=%3Fid%3Df6c2e158-3e16-24a5-4b81-41931d8da4b3%26type%3D55%26m%3D1&ex-fch=416613&ex-src=https://www.customink.com&ex-hargs=v%3D1.0%3Bc%3D1069608560801%3Bp%3DF6C2E158-3E16-24A5-4B81-41931D8DA4B3&cb=836642129426759200&dcc=t
52.46.130.91200 OK 65 B URL HTTP/1.1 s.amazon-adsystem.com/iu3?d=generic&ex-fargs=%3Fid%3Df6c2e158-3e16-24a5-4b81-41931d8da4b3%26type%3D55%26m%3D1&ex-fch=416613&ex-src=https://www.customink.com&ex-hargs=v%3D1.0%3Bc%3D1069608560801%3Bp%3DF6C2E158-3E16-24A5-4B81-41931D8DA4B3&cb=836642129426759200&dcc=t
IP 52.46.130.91:0
File type HTML document, ASCII text
Hash 22fdf49482d8200e8f305bbe262eff14
f254bd4053267c2cf46675613e689016d8b7f775
115d83ece49fd1c5769409aab9d78572eed86cd38a0556b4cdeeac82c83091d3
GET /iu3?d=generic&ex-fargs=%3Fid%3Df6c2e158-3e16-24a5-4b81-41931d8da4b3%26type%3D55%26m%3D1&ex-fch=416613&ex-src=https://www.customink.com&ex-hargs=v%3D1.0%3Bc%3D1069608560801%3Bp%3DF6C2E158-3E16-24A5-4B81-41931D8DA4B3&cb=836642129426759200&dcc=t HTTP/1.1
Host: s.amazon-adsystem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.customink.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Server
Date: Thu, 22 Sep 2022 18:09:15 GMT
Content-Type: text/html;charset=ISO-8859-1
Content-Length: 65
Connection: keep-alive
x-amz-rid: PTWCCGKC437NNJ6K3FNM
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
bat.bing.com/p/action/20042032.js
204.79.197.200200 OK 667 B URL HTTP/2 bat.bing.com/p/action/20042032.js
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with CRLF line terminators
Hash 8d5ddd502bf7fc20b547c208aa5b8bf7
088aa8563aac9e1e97592e7b9cd9cb83765038e7
f1da69eae9ccec7f0400a29b1a1416697afc1a69bae3b3dd0b3c9f11049800e7
GET /p/action/20042032.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: private,max-age=60
content-length: 667
content-type: application/javascript; charset=utf-8
content-encoding: gzip
vary: Accept-Encoding
set-cookie: MUID=3761F32016F7616B12A4E10717A0606B; domain=.bing.com; expires=Tue, 17-Oct-2023 18:09:15 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 2C5579FD74DA4D569FEC8FAF55314BA9 Ref B: OSL30EDGE0317 Ref C: 2022-09-22T18:09:15Z
date: Thu, 22 Sep 2022 18:09:15 GMT
X-Firefox-Spdy: h2
www.customink.com/ink/sb-localinfo
54.230.111.26304 Not Modified 0 B URL HTTP/2 www.customink.com/ink/sb-localinfo
IP 54.230.111.26:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ink/sb-localinfo HTTP/1.1
Host: www.customink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.customink.com/ink/i18nco?cc=NO
Cookie: optimizelyEndUserId=oeu1663870153476r0.29211388897556534; feature_shipping_guarantee_v2=control; page_tests=o%3A1663870153650%3Da%253As%25253Ashipguarantee-control%255Es%25253Ahomecta-test; feature_homepage_cta_test_aug_2022=test; fsTrigger=false; _gcl_au=1.1.518400836.1663870154; FPC=b4bc5b46-c917-4f4d-9d05-1bb2b674780c; FB Event ID=1663870153922.qinyfbyh; _ga=GA1.1.585473523.1663870154; _gid=GA1.2.1891393706.1663870154; _ga_9Z9D1BQPKN=GS1.1.1663870154.1.1.1663870154.60.0.0; _ga_HWLN19Z7EB=GS1.1.1663870154.1.0.1663870154.0.0.0; interactions=a%3Ao%253Acode%253Ds%25253ADL-1000%255Edate%253Dn%25253A1663870153583; ttarp_override=%2B1%20703-434-3214; _i18nco=1; _gat=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
If-None-Match: W/"c1447bf1b499b5530546603fa9ef2f5c"
TE: trailers
HTTP/2 304 Not Modified
date: Thu, 22 Sep 2022 18:09:15 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.customink.com
access-control-request-method: GET
cache-control: max-age=0, private, must-revalidate
etag: W/"c1447bf1b499b5530546603fa9ef2f5c"
server: nginx
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-request-id: 7baef1b0-82f1-48f0-89c7-ada2d1b5032b
x-runtime: 0.075999
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: m2mYqkK3uQqtCGGUu5iglvn4aPBgfPqBbrWyW2lIZbY6YdcAucmpKg==
X-Firefox-Spdy: h2
logx.optimizely.com/v1/events
44.196.18.144204 No Content 0 B URL HTTP/1.1 logx.optimizely.com/v1/events
IP 44.196.18.144:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v1/events HTTP/1.1
Host: logx.optimizely.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 738
Origin: https://www.customink.com
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.customink.com
Access-Control-Expose-Headers: X-Results-Data-Source
Content-Type: text/plain
Date: Thu, 22 Sep 2022 18:09:15 GMT
Server: nginx/1.21.0
Timing-Allow-Origin: *
X-Request-Id: 2f1b098c-bd7f-4e33-a6b2-9bbbc3bde7ea
Connection: keep-alive
cnv.event.prod.bidr.io/log/cnv?tag_id=163&buzz_key=blisspoint&value=customink&segment_key=&order=bfaaf305-854a-4515-b4b8-88f88e520807.null&ord=8164889276790689537&_bee_ppp=1
52.214.24.32200 OK 43 B URL HTTP/1.1 cnv.event.prod.bidr.io/log/cnv?tag_id=163&buzz_key=blisspoint&value=customink&segment_key=&order=bfaaf305-854a-4515-b4b8-88f88e520807.null&ord=8164889276790689537&_bee_ppp=1
IP 52.214.24.32:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash f837aa60b6fe83458f790db60d529fc9
14af87ccec7f81bb28d53c84da2fd5a9d5925cda
dcecab1355b5c2b9ecef281322bf265ac5840b4688748586e9632b473a5fe56b
GET /log/cnv?tag_id=163&buzz_key=blisspoint&value=customink&segment_key=&order=bfaaf305-854a-4515-b4b8-88f88e520807.null&ord=8164889276790689537&_bee_ppp=1 HTTP/1.1
Host: cnv.event.prod.bidr.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.customink.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
cache-control: no-cache, must-revalidate
content-type: image/gif
Date: Thu, 22 Sep 2022 18:09:15 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
p3p: CP="This is not a P3P policy! See https://beeswax.com/privacy for more info."
pragma: no-cache
Server: gunicorn
strict-transport-security: max-age=2592000; includeSubDomains
Content-Length: 43
Connection: keep-alive
lpcdn.lpsnmedia.net/le_unified_window/10.20.1.9-release_5536/desktopEmbedded.js?version=10.20.1.9-release_5536
178.249.97.98200 OK 302 kB URL HTTP/2 lpcdn.lpsnmedia.net/le_unified_window/10.20.1.9-release_5536/desktopEmbedded.js?version=10.20.1.9-release_5536
IP 178.249.97.98:0
File type ASCII text, with very long lines (32018)
Size 302 kB (301784 bytes)
Hash 929f33c7271b28151e15e4d984014b32
99d2449af9e721559b28b4a3323870ad42382bc8
4d94479eaee30cdd9255d934e1db97b58a7d1b9f31bf2b5558456084a1599b29
GET /le_unified_window/10.20.1.9-release_5536/desktopEmbedded.js?version=10.20.1.9-release_5536 HTTP/1.1
Host: lpcdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Sep 2022 18:09:15 GMT
content-type: application/javascript
last-modified: Wed, 31 Aug 2022 14:50:34 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Fri, 22 Sep 2023 18:09:15 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
X-Firefox-Spdy: h2
bat.bing.com/action/0?ti=20042032&Ver=2&mid=d9392827-c7d4-429d-a753-d057b4f4154e&sid=aad73fa03aa111eda730abba99455c40&vid=aad749503aa111edb1895d4a6352e93c&vids=0&msclkid=N&gc=USD&en=Y&sw=1280&sh=1024&sc=24&evt=custom&rn=430230
204.79.197.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=20042032&Ver=2&mid=d9392827-c7d4-429d-a753-d057b4f4154e&sid=aad73fa03aa111eda730abba99455c40&vid=aad749503aa111edb1895d4a6352e93c&vids=0&msclkid=N&gc=USD&en=Y&sw=1280&sh=1024&sc=24&evt=custom&rn=430230
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=20042032&Ver=2&mid=d9392827-c7d4-429d-a753-d057b4f4154e&sid=aad73fa03aa111eda730abba99455c40&vid=aad749503aa111edb1895d4a6352e93c&vids=0&msclkid=N&gc=USD&en=Y&sw=1280&sh=1024&sc=24&evt=custom&rn=430230 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=3EBBBA10710B63F43B24A837705C6238; domain=.bing.com; expires=Tue, 17-Oct-2023 18:09:15 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 86AA1C59D26D4676B106B020D6C044CE Ref B: OSL30EDGE0317 Ref C: 2022-09-22T18:09:15Z
date: Thu, 22 Sep 2022 18:09:15 GMT
X-Firefox-Spdy: h2
ct.pinterest.com/v3/?tid=2618884964404&pd=%7B%22np%22%3A%22gtm%22%2C%22gtm_aem_configs%22%3A%5B%5D%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fwww.customink.com%2F%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%2255e552f9%22%2C%22ecm_enabled%22%3Afalse%7D&cb=1663870154809
23.38.200.197200 OK 35 B URL HTTP/2 ct.pinterest.com/v3/?tid=2618884964404&pd=%7B%22np%22%3A%22gtm%22%2C%22gtm_aem_configs%22%3A%5B%5D%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fwww.customink.com%2F%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%2255e552f9%22%2C%22ecm_enabled%22%3Afalse%7D&cb=1663870154809
IP 23.38.200.197:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9b8d19f4310c758344e40bf17fbc7e85
2290ef058812d5f5e398736e2316cba8cf8093cf
37b17c5135a176a9474521af147d96dfa1fb4ca0f43f00d1400bd1885be3ab9b
GET /v3/?tid=2618884964404&pd=%7B%22np%22%3A%22gtm%22%2C%22gtm_aem_configs%22%3A%5B%5D%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fwww.customink.com%2F%22%2C%22ref%22%3A%22%22%2C%22if%22%3Afalse%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%2255e552f9%22%2C%22ecm_enabled%22%3Afalse%7D&cb=1663870154809 HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-type: image/gif
content-length: 35
access-control-allow-origin: *
x-envoy-upstream-service-time: 2
referrer-policy: origin
x-pinterest-rid: 1813479609000809
date: Thu, 22 Sep 2022 18:09:15 GMT
akamai-grn: 0.274f2417.1663870155.bfb98f78
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
us.creativecdn.com/tags?type=script&id=pr_oUmt0LP6DaxLCcmDvho7&ncm=1&id=pr_oUmt0LP6DaxLCcmDvho7_uid_unknown&tc=1
185.184.10.30200 OK 603 B URL HTTP/2 us.creativecdn.com/tags?type=script&id=pr_oUmt0LP6DaxLCcmDvho7&ncm=1&id=pr_oUmt0LP6DaxLCcmDvho7_uid_unknown&tc=1
IP 185.184.10.30:0
ASN #203690 Rtb House S.A.
File type ASCII text, with very long lines (1116), with no line terminators
Hash 6109c65ea8e107de5daf5275a77f4ee5
1856bd1c68015ca1e17765827eaf04d80b4ff9ad
23e822ac89e85fb519f15ad23e4e87de581646d0e5d8b9c8fd4abcf84adef4bb
GET /tags?type=script&id=pr_oUmt0LP6DaxLCcmDvho7&ncm=1&id=pr_oUmt0LP6DaxLCcmDvho7_uid_unknown&tc=1 HTTP/1.1
Host: us.creativecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.customink.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-max-age: 3600
vary: Origin, Accept-Encoding
content-type: application/javascript; charset=UTF-8
cache-control: no-cache, no-store, must-revalidate, private, max-age=0
pragma: no-cache
date: Thu, 22 Sep 2022 18:09:15 GMT, Thu, 22 Sep 2022 18:09:15 GMT
expires: Thu, 01 Jan 1970 00:00:00 GMT
content-encoding: gzip
content-length: 603
X-Firefox-Spdy: h2
ct.pinterest.com/user/?tid=2618884964404&pd=%7B%22np%22%3A%22gtm%22%2C%22gtm_aem_configs%22%3A%5B%5D%7D&cb=1663870154808
23.38.200.197200 OK 378 B URL HTTP/2 ct.pinterest.com/user/?tid=2618884964404&pd=%7B%22np%22%3A%22gtm%22%2C%22gtm_aem_configs%22%3A%5B%5D%7D&cb=1663870154808
IP 23.38.200.197:0
File type JSON data\012- , ASCII text, with very long lines (540), with no line terminators
Hash 3552f5f146470ca7ebc456b2595776c5
a4baaddc1ef324c9e169da6b1e21f33210cdf86b
3c8d06b1f641094d99da191134bcff7e255ef67f45967db4a1ec4a9c2f381068
GET /user/?tid=2618884964404&pd=%7B%22np%22%3A%22gtm%22%2C%22gtm_aem_configs%22%3A%5B%5D%7D&cb=1663870154808 HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.customink.com
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-expose-headers: Epik,Pin-Unauth
pin-unauth: dWlkPU16RXhNMkV5TUdRdE9UTm1ZaTAwWVRFMExUaGlaVE10WkRjMU1qazNORE14TkdWbQ
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
access-control-allow-origin: https://www.customink.com
content-type: application/json; charset=utf-8
content-encoding: gzip
content-length: 378
x-envoy-upstream-service-time: 1
referrer-policy: origin
x-pinterest-rid: 2427749475803535
date: Thu, 22 Sep 2022 18:09:15 GMT
vary: Accept-Encoding
akamai-grn: 0.274f2417.1663870155.bfb98fe6
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D3017114%26time%3D1663870154588%26url%3Dhttps%253A%252F%252Fwww.customink.com%252F%26liSync%3Dtrue
13.107.42.14302 Found 0 B URL HTTP/2 www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D3017114%26time%3D1663870154588%26url%3Dhttps%253A%252F%252Fwww.customink.com%252F%26liSync%3Dtrue
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D3017114%26time%3D1663870154588%26url%3Dhttps%253A%252F%252Fwww.customink.com%252F%26liSync%3Dtrue HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.customink.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=3017114&time=1663870154588&url=https%3A%2F%2Fwww.customink.com%2F&liSync=true
set-cookie: lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None
bcookie="v=2&5afae838-652d-40bc-8756-cc4c717f4a73"; Domain=.linkedin.com; Expires=Fri, 22-Sep-2023 18:09:15 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&202209221809151acd6d99-ec93-4d6d-82ae-9030ddaf87e6AQGJ9Wp-0urCbLEmmfJMN8xDbtSD9Hlt"; Domain=.www.linkedin.com; Expires=Fri, 22-Sep-2023 18:09:15 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE2NjM4NzAxNTU7MjswMjEXXygDxyFeoTdOvRhWlbGSOYqVydrlDQAL9qqXGmVTlA==; Domain=.linkedin.com; Expires=Tue, 21 Mar 2023 18:09:15 GMT; Path=/; Secure; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2387:u=1:x=1:i=1663870155:t=1663956555:v=2:sig=AQH51-cwDrwhaCj1If0-ALPuvAQcYg3U"; Expires=Fri, 23 Sep 2022 18:09:15 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
content-security-policy: default-src *; connect-src 'self' https://media-src.linkedin.com/media/ www.linkedin.com s.c.lnkd.licdn.com m.c.lnkd.licdn.com wss://*.linkedin.com dms.licdn.com https://dpm.demdex.net/id lnkd.demdex.net blob: https://accounts.google.com/gsi/status https://linkedin.sc.omtrdc.net/b/ss/ www.google-analytics.com https://*.qualtrics.com static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com media.licdn.com media-exp1.licdn.com media-exp2.licdn.com media-exp3.licdn.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'report-sample' 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com www.google-analytics.com ssl.google-analytics.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com https://snap.licdn.com/li.lms-analytics/ platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; child-src blob: lnkd-communities: voyager: *; frame-ancestors 'self'; report-uri /security/csp?e=p&f=t
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-ltx1
report-to: {"group":"network-errors","max_age":2592000,"endpoints":[{"url":"https://www.linkedin.com/li/rep"}],"include_subdomains":true}
nel: {"report_to":"network-errors","max_age":1296000,"success_fraction":0.00066,"failure_fraction":1,"include_subdomains":true}
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXpR/WWvYh7oaJvUZxDWA==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 6B9BDECB1D2247DCB268FDB1BC6CE631 Ref B: OSL30EDGE0113 Ref C: 2022-09-22T18:09:15Z
date: Thu, 22 Sep 2022 18:09:15 GMT
content-length: 0
X-Firefox-Spdy: h2
ct.pinterest.com/v3/?tid=2618884964404&pd=%7B%22np%22%3A%22gtm%22%2C%22gtm_aem_configs%22%3A%5B%5D%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fwww.customink.com%2Fink%2Fi18nco%3Fcc%3DNO%22%2C%22ref%22%3A%22https%3A%2F%2Fwww.customink.com%2F%22%2C%22if%22%3Atrue%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%221feae7a5%22%2C%22ecm_enabled%22%3Afalse%7D&cb=1663870155257
23.38.200.197200 OK 35 B URL HTTP/2 ct.pinterest.com/v3/?tid=2618884964404&pd=%7B%22np%22%3A%22gtm%22%2C%22gtm_aem_configs%22%3A%5B%5D%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fwww.customink.com%2Fink%2Fi18nco%3Fcc%3DNO%22%2C%22ref%22%3A%22https%3A%2F%2Fwww.customink.com%2F%22%2C%22if%22%3Atrue%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%221feae7a5%22%2C%22ecm_enabled%22%3Afalse%7D&cb=1663870155257
IP 23.38.200.197:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 9b8d19f4310c758344e40bf17fbc7e85
2290ef058812d5f5e398736e2316cba8cf8093cf
37b17c5135a176a9474521af147d96dfa1fb4ca0f43f00d1400bd1885be3ab9b
GET /v3/?tid=2618884964404&pd=%7B%22np%22%3A%22gtm%22%2C%22gtm_aem_configs%22%3A%5B%5D%7D&event=init&ad=%7B%22loc%22%3A%22https%3A%2F%2Fwww.customink.com%2Fink%2Fi18nco%3Fcc%3DNO%22%2C%22ref%22%3A%22https%3A%2F%2Fwww.customink.com%2F%22%2C%22if%22%3Atrue%2C%22sh%22%3A1024%2C%22sw%22%3A1280%2C%22mh%22%3A%221feae7a5%22%2C%22ecm_enabled%22%3Afalse%7D&cb=1663870155257 HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-type: image/gif
content-length: 35
access-control-allow-origin: *
x-envoy-upstream-service-time: 3
referrer-policy: origin
x-pinterest-rid: 1152021949825737
date: Thu, 22 Sep 2022 18:09:15 GMT
akamai-grn: 0.274f2417.1663870155.bfb992c3
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
us.creativecdn.com/tags?type=iframe&id=pr_oUmt0LP6DaxLCcmDvho7&id=pr_oUmt0LP6DaxLCcmDvho7_uid_unknown&ncm=1&tc=1
185.184.10.30200 OK 26 B URL HTTP/2 us.creativecdn.com/tags?type=iframe&id=pr_oUmt0LP6DaxLCcmDvho7&id=pr_oUmt0LP6DaxLCcmDvho7_uid_unknown&ncm=1&tc=1
IP 185.184.10.30:0
ASN #203690 Rtb House S.A.
File type HTML document, ASCII text, with no line terminators
Hash b256d97fbb697428b7a1286ea33539c0
7e4e54e0434406746420141881f419ac165d3edc
f70b370debd085dd9e9fb6495c796cdccf41c44574cc185dbe124f3ea8237623
GET /tags?type=iframe&id=pr_oUmt0LP6DaxLCcmDvho7&id=pr_oUmt0LP6DaxLCcmDvho7_uid_unknown&ncm=1&tc=1 HTTP/1.1
Host: us.creativecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-max-age: 3600
vary: Origin, Accept-Encoding
content-type: text/html;charset=utf-8
cache-control: no-cache, no-store, must-revalidate, private, max-age=0
pragma: no-cache
date: Thu, 22 Sep 2022 18:09:15 GMT, Thu, 22 Sep 2022 18:09:15 GMT
expires: Thu, 01 Jan 1970 00:00:00 GMT
content-length: 26
X-Firefox-Spdy: h2
us.creativecdn.com/tags?type=script&id=pr_oUmt0LP6DaxLCcmDvho7&ncm=1&id=pr_oUmt0LP6DaxLCcmDvho7_uid_unknown&tc=1
185.184.10.30200 OK 603 B URL HTTP/2 us.creativecdn.com/tags?type=script&id=pr_oUmt0LP6DaxLCcmDvho7&ncm=1&id=pr_oUmt0LP6DaxLCcmDvho7_uid_unknown&tc=1
IP 185.184.10.30:0
ASN #203690 Rtb House S.A.
File type ASCII text, with very long lines (1116), with no line terminators
Hash 6109c65ea8e107de5daf5275a77f4ee5
1856bd1c68015ca1e17765827eaf04d80b4ff9ad
23e822ac89e85fb519f15ad23e4e87de581646d0e5d8b9c8fd4abcf84adef4bb
GET /tags?type=script&id=pr_oUmt0LP6DaxLCcmDvho7&ncm=1&id=pr_oUmt0LP6DaxLCcmDvho7_uid_unknown&tc=1 HTTP/1.1
Host: us.creativecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.customink.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-max-age: 3600
vary: Origin, Accept-Encoding
content-type: application/javascript; charset=UTF-8
cache-control: no-cache, no-store, must-revalidate, private, max-age=0
pragma: no-cache
date: Thu, 22 Sep 2022 18:09:15 GMT, Thu, 22 Sep 2022 18:09:15 GMT
expires: Thu, 01 Jan 1970 00:00:00 GMT
content-encoding: gzip
content-length: 603
X-Firefox-Spdy: h2
ct.pinterest.com/user/?tid=2618884964404&pd=%7B%22np%22%3A%22gtm%22%2C%22gtm_aem_configs%22%3A%5B%5D%7D&cb=1663870155256
23.38.200.197200 OK 378 B URL HTTP/2 ct.pinterest.com/user/?tid=2618884964404&pd=%7B%22np%22%3A%22gtm%22%2C%22gtm_aem_configs%22%3A%5B%5D%7D&cb=1663870155256
IP 23.38.200.197:0
File type JSON data\012- , ASCII text, with very long lines (540), with no line terminators
Hash 3552f5f146470ca7ebc456b2595776c5
a4baaddc1ef324c9e169da6b1e21f33210cdf86b
3c8d06b1f641094d99da191134bcff7e255ef67f45967db4a1ec4a9c2f381068
GET /user/?tid=2618884964404&pd=%7B%22np%22%3A%22gtm%22%2C%22gtm_aem_configs%22%3A%5B%5D%7D&cb=1663870155256 HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.customink.com
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-expose-headers: Epik,Pin-Unauth
pin-unauth: dWlkPU1UVmpOV1l4TURZdE1EZGlNQzAwWWpBNExUaGxNRFl0WkdaaVpHRXpaVFF5WmpObQ
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
access-control-allow-origin: https://www.customink.com
content-type: application/json; charset=utf-8
content-encoding: gzip
content-length: 378
x-envoy-upstream-service-time: 1
referrer-policy: origin
x-pinterest-rid: 1605670221828675
date: Thu, 22 Sep 2022 18:09:15 GMT
vary: Accept-Encoding
akamai-grn: 0.274f2417.1663870155.bfb992d4
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
l.hrzn-nxt.com/pxl?stm=1663870155089&e=pv&url=https%3A%2F%2Fwww.customink.com%2Fink%2Fi18nco%3Fcc%3DNO&page=Custom%20T-shirts%20-%20Design%20Your%20Own%20T-Shirts%20Online%20-%20Free%20Shipping!&refr=https%3A%2F%2Fwww.customink.com%2F&tv=js-2.12.0&tna=nf&aid=customink-2228352f-80ba-4602-90a3-21b1a3ca1266&p=web&tz=UTC&lang=en-US&cs=UTF-8&res=1280x1024&cd=24&eid=b594cee9-0316-49d7-907c-6f186af599a4&dtm=1663870155088&vp=770x550&ds=770x550&vid=1&sid=2746d4d0-f6d6-4673-89e9-8dd720bd85e2&duid=da869488-6055-40cf-b7e1-14e20f06119f&fp=1326250463
54.230.111.129200 OK 43 B URL HTTP/2 l.hrzn-nxt.com/pxl?stm=1663870155089&e=pv&url=https%3A%2F%2Fwww.customink.com%2Fink%2Fi18nco%3Fcc%3DNO&page=Custom%20T-shirts%20-%20Design%20Your%20Own%20T-Shirts%20Online%20-%20Free%20Shipping!&refr=https%3A%2F%2Fwww.customink.com%2F&tv=js-2.12.0&tna=nf&aid=customink-2228352f-80ba-4602-90a3-21b1a3ca1266&p=web&tz=UTC&lang=en-US&cs=UTF-8&res=1280x1024&cd=24&eid=b594cee9-0316-49d7-907c-6f186af599a4&dtm=1663870155088&vp=770x550&ds=770x550&vid=1&sid=2746d4d0-f6d6-4673-89e9-8dd720bd85e2&duid=da869488-6055-40cf-b7e1-14e20f06119f&fp=1326250463
IP 54.230.111.129:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash fb02f374b8f73825415db1bccd4bd76d
b103aa629cacdd90b39538a7561da7f8e49ad73f
caa849b179befa2645a8e2c474d2e82a76777a3305315ece911013e8ee9a916c
GET /pxl?stm=1663870155089&e=pv&url=https%3A%2F%2Fwww.customink.com%2Fink%2Fi18nco%3Fcc%3DNO&page=Custom%20T-shirts%20-%20Design%20Your%20Own%20T-Shirts%20Online%20-%20Free%20Shipping!&refr=https%3A%2F%2Fwww.customink.com%2F&tv=js-2.12.0&tna=nf&aid=customink-2228352f-80ba-4602-90a3-21b1a3ca1266&p=web&tz=UTC&lang=en-US&cs=UTF-8&res=1280x1024&cd=24&eid=b594cee9-0316-49d7-907c-6f186af599a4&dtm=1663870155088&vp=770x550&ds=770x550&vid=1&sid=2746d4d0-f6d6-4673-89e9-8dd720bd85e2&duid=da869488-6055-40cf-b7e1-14e20f06119f&fp=1326250463 HTTP/1.1
Host: l.hrzn-nxt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 43
date: Thu, 22 Sep 2022 18:09:16 GMT
last-modified: Wed, 17 Apr 2019 18:13:20 GMT
etag: "fb02f374b8f73825415db1bccd4bd76d"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: IFn_4XZWREsKvc_h1C71HiNZ8psE4pSu2JAq2CZKCFRBPvtKhdiSvw==
X-Firefox-Spdy: h2
www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D3017114%26time%3D1663870155064%26url%3Dhttps%253A%252F%252Fwww.customink.com%252F%26liSync%3Dtrue
13.107.42.14302 Found 0 B URL HTTP/2 www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D3017114%26time%3D1663870155064%26url%3Dhttps%253A%252F%252Fwww.customink.com%252F%26liSync%3Dtrue
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D3017114%26time%3D1663870155064%26url%3Dhttps%253A%252F%252Fwww.customink.com%252F%26liSync%3Dtrue HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.customink.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=3017114&time=1663870155064&url=https%3A%2F%2Fwww.customink.com%2F&liSync=true
set-cookie: lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None
bcookie="v=2&440c4a1e-bdd8-47ae-8897-dee1136e4bce"; Domain=.linkedin.com; Expires=Fri, 22-Sep-2023 18:09:15 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&20220922180915effa0809-f244-4446-8a0d-73136928fd94AQHMLQ11CZL4wcqu_0FKNebx6L5OLgAw"; Domain=.www.linkedin.com; Expires=Fri, 22-Sep-2023 18:09:15 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE2NjM4NzAxNTU7MjswMjFF6iaWU7Aow2g/KLW+48HAGMH1pXdmMwOM/oPFf8BZMw==; Domain=.linkedin.com; Expires=Tue, 21 Mar 2023 18:09:15 GMT; Path=/; Secure; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2387:u=1:x=1:i=1663870155:t=1663956555:v=2:sig=AQH51-cwDrwhaCj1If0-ALPuvAQcYg3U"; Expires=Fri, 23 Sep 2022 18:09:15 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
content-security-policy: default-src *; connect-src 'self' https://media-src.linkedin.com/media/ www.linkedin.com s.c.lnkd.licdn.com m.c.lnkd.licdn.com wss://*.linkedin.com dms.licdn.com https://dpm.demdex.net/id lnkd.demdex.net blob: https://accounts.google.com/gsi/status https://linkedin.sc.omtrdc.net/b/ss/ www.google-analytics.com https://*.qualtrics.com static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com media.licdn.com media-exp1.licdn.com media-exp2.licdn.com media-exp3.licdn.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'report-sample' 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com www.google-analytics.com ssl.google-analytics.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com https://snap.licdn.com/li.lms-analytics/ platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; child-src blob: lnkd-communities: voyager: *; frame-ancestors 'self'
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXpR/WYt1YYoXyNnvPKhw==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 6EF282B1B2E9491D965B5F8C827E9F99 Ref B: OSL30EDGE0113 Ref C: 2022-09-22T18:09:15Z
date: Thu, 22 Sep 2022 18:09:15 GMT
content-length: 0
X-Firefox-Spdy: h2
px.ads.linkedin.com/collect?v=2&fmt=js&pid=3017114&time=1663870154588&url=https%3A%2F%2Fwww.customink.com%2F&liSync=true
13.107.42.14200 OK 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=3017114&time=1663870154588&url=https%3A%2F%2Fwww.customink.com%2F&liSync=true
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=3017114&time=1663870154588&url=https%3A%2F%2Fwww.customink.com%2F&liSync=true HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.customink.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
set-cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&1eaf9fa7-4d46-4612-8471-cb9b1a077799"; domain=.linkedin.com; Path=/; Secure; Expires=Fri, 22-Sep-2023 18:09:15 GMT; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2391:u=1:x=1:i=1663870155:t=1663956555:v=2:sig=AQHpLoATVNvqu-QRCr6MowDTsrIR6zRy"; Expires=Fri, 23 Sep 2022 18:09:15 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lva1
report-to: {"group":"network-errors","max_age":2592000,"endpoints":[{"url":"https://www.linkedin.com/li/rep"}],"include_subdomains":true}
nel: {"report_to":"network-errors","max_age":1296000,"success_fraction":0.00066,"failure_fraction":1,"include_subdomains":true}
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXpR/WZNvS+Hbz/2NwtTQ==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: D5CE36279F1E4B0BB32E17B4DBDE9DB7 Ref B: OSL30EDGE0113 Ref C: 2022-09-22T18:09:15Z
date: Thu, 22 Sep 2022 18:09:15 GMT
content-length: 0
X-Firefox-Spdy: h2
www.clarity.ms/tag/uet/20042032
13.107.246.53200 OK 1.5 kB URL HTTP/2 www.clarity.ms/tag/uet/20042032
IP 13.107.246.53:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (1540), with no line terminators
Hash 7bb8a42a62617e6a97a718976d44ed42
9bfc08b250e7508a0e12be0cd99e5da2a8551597
b81d3af29320b4f1da53b166b545a4da32bc46a2ff071681037689d8e1cae74f
GET /tag/uet/20042032 HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store
content-length: 1540
content-type: application/x-javascript
expires: -1
set-cookie: CLID=b32381160229461aa3c3170f13ab96dd.20220922.20230922; expires=Fri, 22 Sep 2023 18:09:16 GMT; path=/; secure; samesite=none; httponly
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
x-azure-ref: 0y6QsYwAAAACUUTbyGXD1Rr4RUP+vS/0qTE9OMjFFREdFMTYxOAA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Thu, 22 Sep 2022 18:09:15 GMT
X-Firefox-Spdy: h2
www.clarity.ms/tag/uet/20042032
13.107.246.53200 OK 1.6 kB URL HTTP/2 www.clarity.ms/tag/uet/20042032
IP 13.107.246.53:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document, ASCII text, with very long lines (1566), with no line terminators
Hash d61b28047c02292c16b8609274533a87
e8bdaae9fb1e319b8fa05ebf5dfc39cc5fb20e5d
9dc0ad3afc417a30ffd5bc75afcec23c4b543678db34c0394d81bb6d91567563
GET /tag/uet/20042032 HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store
content-type: application/x-javascript
expires: -1
set-cookie: CLID=9abcfd956e30439c98ca8d46772a4c3d.20220922.20230922; expires=Fri, 22 Sep 2023 18:09:15 GMT; path=/; secure; samesite=none; httponly
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
x-azure-ref: 0y6QsYwAAAAAqpZ84Xr9tR7ARXPuRD0CfTE9OMjFFREdFMTYxOAA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Thu, 22 Sep 2022 18:09:15 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 04fcf7ddca845d2b087ec43ab5ff0d59
39060a9af77ba92e5db529ba7c79013d205c9423
1ae0d60b572f2075bddfe8ae2034ddd093150d0d18c72d967b3bb8c4abffb23e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 18:09:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
logx.optimizely.com/v1/events
44.196.18.144204 No Content 0 B URL HTTP/1.1 logx.optimizely.com/v1/events
IP 44.196.18.144:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v1/events HTTP/1.1
Host: logx.optimizely.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 779
Origin: https://www.customink.com
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.customink.com
Access-Control-Expose-Headers: X-Results-Data-Source
Content-Type: text/plain
Date: Thu, 22 Sep 2022 18:09:16 GMT
Server: nginx/1.21.0
Timing-Allow-Origin: *
X-Request-Id: 9d634318-ccef-4a8c-ace7-918b1f47f87a
Connection: keep-alive
px.ads.linkedin.com/collect?v=2&fmt=js&pid=3017114&time=1663870155064&url=https%3A%2F%2Fwww.customink.com%2F&liSync=true
13.107.42.14200 OK 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=3017114&time=1663870155064&url=https%3A%2F%2Fwww.customink.com%2F&liSync=true
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=3017114&time=1663870155064&url=https%3A%2F%2Fwww.customink.com%2F&liSync=true HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.customink.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
set-cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&b9b179cf-05dd-4f89-81bf-8908fda0b5f9"; domain=.linkedin.com; Path=/; Secure; Expires=Fri, 22-Sep-2023 18:09:16 GMT; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2387:u=1:x=1:i=1663870156:t=1663956556:v=2:sig=AQE2QHSbD4BAQb1XJ6eDbp71WFm055uY"; Expires=Fri, 23 Sep 2022 18:09:16 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXpR/WbXUPiBHVUxhx4sQ==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 5834ABB5AC1848639739AB1B338175DD Ref B: OSL30EDGE0113 Ref C: 2022-09-22T18:09:16Z
date: Thu, 22 Sep 2022 18:09:16 GMT
content-length: 0
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-860220-1&cid=585473523.1663870154&jid=1268253903&_u=aGBAAEACQAAAAC~&z=1633478061
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-860220-1&cid=585473523.1663870154&jid=1268253903&_u=aGBAAEACQAAAAC~&z=1633478061
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-860220-1&cid=585473523.1663870154&jid=1268253903&_u=aGBAAEACQAAAAC~&z=1633478061 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 22 Sep 2022 18:09:16 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.clarity.ms/eus2/s/0.6.41/clarity.js
13.107.246.53200 OK 24 kB URL HTTP/2 www.clarity.ms/eus2/s/0.6.41/clarity.js
IP 13.107.246.53:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (54809)
Hash 3200a8e98b0515ad5eceae8dfdd68552
edf3ad66ee2b0d2baba0830e637ec551afeb02d4
ed62abe8040412bd2d130fe85fd8c7287ef96180ec867bafdd19c1b32ffd1ac9
GET /eus2/s/0.6.41/clarity.js HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public,max-age=86400
content-type: application/javascript;charset=utf-8
content-encoding: br
last-modified: Wed, 01 Jun 2022 12:22:22 GMT
accept-ranges: bytes
etag: "1d8ccdebe9ad570"
vary: Accept-Encoding
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
x-azure-ref: 0y6QsYwAAAABAHlFQHLLkRphCeiYi34AnTE9OMjFFREdFMTYxOAA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Thu, 22 Sep 2022 18:09:15 GMT
X-Firefox-Spdy: h2
logx.optimizely.com/v1/events
44.196.18.144204 No Content 0 B URL HTTP/1.1 logx.optimizely.com/v1/events
IP 44.196.18.144:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v1/events HTTP/1.1
Host: logx.optimizely.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1342
Origin: https://www.customink.com
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.customink.com
Access-Control-Expose-Headers: X-Results-Data-Source
Content-Type: text/plain
Date: Thu, 22 Sep 2022 18:09:16 GMT
Server: nginx/1.21.0
Timing-Allow-Origin: *
X-Request-Id: cf25f530-f583-4691-b131-1561c4af94b0
Connection: keep-alive
ct.pinterest.com/ct.html
23.38.200.197200 OK 323 B IP 23.38.200.197:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (565), with no line terminators
Hash b49b45b63051915a8c657060651eb07f
acaddf8021f220d0e4d30e7c8b3d8330ff781af9
4b00fbca5db49c6e4b29a0c873c43671880bcea1b7b3007655183382a318c2dc
GET /ct.html HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=86400
content-type: text/html; charset=utf-8
content-encoding: gzip
content-length: 323
x-envoy-upstream-service-time: 0
referrer-policy: origin
x-pinterest-rid: 3605427544828437
date: Thu, 22 Sep 2022 18:09:16 GMT
vary: Accept-Encoding
akamai-grn: 0.274f2417.1663870156.bfb99e27
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
c.clarity.ms/c.gif
20.234.93.27302 Found 0 B IP 20.234.93.27:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.bing.com/c.gif?CtsSyncId=DFEA14BDBA9A4FEFB53FFDB959D94F01&RedC=c.clarity.ms&MXFR=2C0EA9922B4C652133C7BBB52F4C6B84
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SM=T; domain=c.clarity.ms; path=/; SameSite=None; Secure;
MUID=2C0EA9922B4C652133C7BBB52F4C6B84; domain=.clarity.ms; expires=Tue, 17-Oct-2023 18:09:16 GMT; path=/; SameSite=None; Secure; Priority=High;
date: Thu, 22 Sep 2022 18:09:16 GMT
content-length: 0
X-Firefox-Spdy: h2
us.creativecdn.com/tags?type=script&id=pr_oUmt0LP6DaxLCcmDvho7_home&id=pr_oUmt0LP6DaxLCcmDvho7_uid_unknown
185.184.10.30302 Found 0 B URL HTTP/2 us.creativecdn.com/tags?type=script&id=pr_oUmt0LP6DaxLCcmDvho7_home&id=pr_oUmt0LP6DaxLCcmDvho7_uid_unknown
IP 185.184.10.30:0
ASN #203690 Rtb House S.A.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tags?type=script&id=pr_oUmt0LP6DaxLCcmDvho7_home&id=pr_oUmt0LP6DaxLCcmDvho7_uid_unknown HTTP/1.1
Host: us.creativecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Thu, 22 Sep 2022 18:09:16 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-max-age: 3600
vary: Origin
expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
set-cookie: u=ebSOZpDFnLG28oFmThyl;Path=/;Domain=.creativecdn.com;Expires=Fri, 22-Sep-2023 18:09:16 GMT;Max-Age=31536000;Secure;SameSite=None
ts=1663870156;Path=/;Domain=.creativecdn.com;Expires=Fri, 22-Sep-2023 18:09:16 GMT;Max-Age=31536000;Secure;SameSite=None
location: https://us.creativecdn.com/tags?type=script&id=pr_oUmt0LP6DaxLCcmDvho7_home&id=pr_oUmt0LP6DaxLCcmDvho7_uid_unknown&tc=1
content-length: 0
X-Firefox-Spdy: h2
lptag.liveperson.net/lptag/api/account/23156914/configuration/applications/taglets/.jsonp?v=2.0&df=0&b=3
178.249.101.23200 OK 98 kB URL HTTP/2 lptag.liveperson.net/lptag/api/account/23156914/configuration/applications/taglets/.jsonp?v=2.0&df=0&b=3
IP 178.249.101.23:0
Hash a9bff7539460d4f6c05b3285e660216b
b1aa7b35c76f5a8cd9f19a4c265d92840f590dcb
4e662bf98e4d13651f26bd2b25a643dc9ce05fa7a5d1ef91828f19fdc5668ed4
GET /lptag/api/account/23156914/configuration/applications/taglets/.jsonp?v=2.0&df=0&b=3 HTTP/1.1
Host: lptag.liveperson.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Sep 2022 18:09:15 GMT
content-type: application/x-javascript
cache-control: public, max-age=630
server: ws
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
x-cache-status: HIT
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
c.bing.com/c.gif?CtsSyncId=DFEA14BDBA9A4FEFB53FFDB959D94F01&RedC=c.clarity.ms&MXFR=2C0EA9922B4C652133C7BBB52F4C6B84
204.79.197.200302 Found 0 B URL HTTP/2 c.bing.com/c.gif?CtsSyncId=DFEA14BDBA9A4FEFB53FFDB959D94F01&RedC=c.clarity.ms&MXFR=2C0EA9922B4C652133C7BBB52F4C6B84
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif?CtsSyncId=DFEA14BDBA9A4FEFB53FFDB959D94F01&RedC=c.clarity.ms&MXFR=2C0EA9922B4C652133C7BBB52F4C6B84 HTTP/1.1
Host: c.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.customink.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.clarity.ms/c.gif?CtsSyncId=DFEA14BDBA9A4FEFB53FFDB959D94F01&MUID=2DE4C24D748F6EA82E0AD06A75D86F14
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SRM_B=2DE4C24D748F6EA82E0AD06A75D86F14; domain=c.bing.com; expires=Tue, 17-Oct-2023 18:09:16 GMT; path=/; SameSite=None; Secure;
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: BD1A144DC40A4E22929CEFCD77A5B327 Ref B: OSL30EDGE0317 Ref C: 2022-09-22T18:09:16Z
date: Thu, 22 Sep 2022 18:09:15 GMT
content-length: 0
X-Firefox-Spdy: h2
resources.digital-cloud-west.medallia.com/wdcwest/5548/onsite/embed.js
151.101.85.230200 OK 531 B URL HTTP/2 resources.digital-cloud-west.medallia.com/wdcwest/5548/onsite/embed.js
IP 151.101.85.230:0
File type ASCII text, with very long lines (592)
Hash bd1aa4b1c75efe67d529ecb8f91cbfcb
a6cb625cbfc0eae87352e0a5f646c0893f00c383
b4f3fbedc14aa1c72136479933d8c6f5977bd02bb2a06c374e7d10a71e5b9dcc
GET /wdcwest/5548/onsite/embed.js HTTP/1.1
Host: resources.digital-cloud-west.medallia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: ulXikLBNzxEZchoKk03p7c4UXMo9lodw0z5i25ozsH4gotRD1N6HHBVBvbmf/XVEm29k9JDsKH4=
x-amz-request-id: 7W2D9FMGN7CR58TH
last-modified: Mon, 29 Aug 2022 11:06:35 GMT
etag: "3f2a0687767c2e66e954d92d8c041923"
x-amz-version-id: g54p6tOeRIkCGmRB0X2qEY1lR34mzQJw
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
cache-control: max-age=0,must-revalidate
accept-ranges: bytes
date: Thu, 22 Sep 2022 18:09:16 GMT
age: 1599187
x-served-by: cache-sea4480-SEA, cache-bma1648-BMA
x-cache: HIT, HIT
x-cache-hits: 14, 1
x-timer: S1663870156.473159,VS0,VE1
vary: Accept-Encoding
strict-transport-security: max-age=31557600
content-length: 531
X-Firefox-Spdy: h2
ct.pinterest.com/ct.html
23.38.200.197200 OK 323 B IP 23.38.200.197:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (565), with no line terminators
Hash b49b45b63051915a8c657060651eb07f
acaddf8021f220d0e4d30e7c8b3d8330ff781af9
4b00fbca5db49c6e4b29a0c873c43671880bcea1b7b3007655183382a318c2dc
GET /ct.html HTTP/1.1
Host: ct.pinterest.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=86400
content-type: text/html; charset=utf-8
content-encoding: gzip
content-length: 323
x-envoy-upstream-service-time: 2
referrer-policy: origin
x-pinterest-rid: 1420325606424153
date: Thu, 22 Sep 2022 18:09:16 GMT
vary: Accept-Encoding
akamai-grn: 0.274f2417.1663870156.bfb9a0c9
x-cdn: akamai
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
resources.digital-cloud-west.medallia.com/wdcwest/5548/onsite/generic1661771193524.js
151.101.85.230200 OK 83 kB URL HTTP/2 resources.digital-cloud-west.medallia.com/wdcwest/5548/onsite/generic1661771193524.js
IP 151.101.85.230:0
File type Unicode text, UTF-8 text, with very long lines (40192)
Hash c130177c2513d0abd0d913da103aec2a
ad6ed6ad8aab00db8197f746179d7e2b727937fe
18f44f958ec1bd1f6674ab86e82644b83e7423230cdf9c61315159d13a0c3b94
GET /wdcwest/5548/onsite/generic1661771193524.js HTTP/1.1
Host: resources.digital-cloud-west.medallia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: ANCn4bA7QbyYxBciYvahdaMZZeYrdoLl6YzHMpHh0zPB2SAY+YKN2r/f2aJx8FYmWDRzu0jP+gc=
x-amz-request-id: 7GGTY291N6E3Z6Y7
last-modified: Mon, 29 Aug 2022 11:06:34 GMT
etag: "2f08b66d4f9f2cda01f3a81beb833766"
x-amz-version-id: Ei8DgthJwcTdykdvZVNM0Wd9KwMcbSr1
content-type: application/javascript
server: AmazonS3
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
access-control-allow-origin: *
cache-control: max-age=2592000
accept-ranges: bytes
date: Thu, 22 Sep 2022 18:09:16 GMT
age: 1599188
x-served-by: cache-sea4455-SEA, cache-bma1648-BMA
x-cache: HIT, HIT
x-cache-hits: 3, 1
x-timer: S1663870157.510045,VS0,VE1
vary: Accept-Encoding
strict-transport-security: max-age=31557600
content-length: 83043
X-Firefox-Spdy: h2
c.clarity.ms/c.gif?CtsSyncId=DFEA14BDBA9A4FEFB53FFDB959D94F01&MUID=2DE4C24D748F6EA82E0AD06A75D86F14
20.234.93.27200 OK 42 B URL HTTP/2 c.clarity.ms/c.gif?CtsSyncId=DFEA14BDBA9A4FEFB53FFDB959D94F01&MUID=2DE4C24D748F6EA82E0AD06A75D86F14
IP 20.234.93.27:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 1 x 1\012- data
Hash 32023bb33cfb2a1990a4ef2d85b6ac16
23dcc6d4b5bfe00357fd0248bb5955b8e36bb8f1
99c2917ee5b2a01459a923bdd1c676f15ee73b62b87f696e6735312d26f51e12
GET /c.gif?CtsSyncId=DFEA14BDBA9A4FEFB53FFDB959D94F01&MUID=2DE4C24D748F6EA82E0AD06A75D86F14 HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.customink.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
content-type: image/gif
last-modified: Tue, 13 Sep 2022 19:54:52 GMT
accept-ranges: bytes
etag: "8d3298b0aac7d81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: ANONCHK=0; domain=c.clarity.ms; expires=Thu, 22-Sep-2022 18:19:16 GMT; path=/; SameSite=None; Secure;
date: Thu, 22 Sep 2022 18:09:16 GMT
content-length: 42
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 9a0cfa1babb4fcb703857107c51c2e99
19d4285dabd24ee2ac3c2ff117821c2ea94f1e6b
6cfc0cb0a71921899bf0ed2ad90063e051f74dd6b7190cc8af9a999bc420aa29
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 22 Sep 2022 18:09:16 GMT
Last-Modified: Thu, 22 Sep 2022 16:28:26 GMT
Server: ECS (nyb/1D34)
X-Cache: Miss from cloudfront
Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: D93Wsi0BXiBeu0AVpSlhx20xWyVIH7-9aE_6UDGUovHeNaBnWH8-mA==
Age: 6050
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 9a0cfa1babb4fcb703857107c51c2e99
19d4285dabd24ee2ac3c2ff117821c2ea94f1e6b
6cfc0cb0a71921899bf0ed2ad90063e051f74dd6b7190cc8af9a999bc420aa29
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 22 Sep 2022 18:09:16 GMT
Last-Modified: Thu, 22 Sep 2022 16:33:31 GMT
Server: ECS (nyb/1D0D)
X-Cache: Miss from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ZlxuK3CRA67G0qiL0G6hr5fbEth73xvrxqEPt-aq6zicg6CQB6wLbA==
Age: 5745
us.creativecdn.com/tags?type=script&id=pr_oUmt0LP6DaxLCcmDvho7_home&id=pr_oUmt0LP6DaxLCcmDvho7_uid_unknown&tc=1
185.184.10.30200 OK 599 B URL HTTP/2 us.creativecdn.com/tags?type=script&id=pr_oUmt0LP6DaxLCcmDvho7_home&id=pr_oUmt0LP6DaxLCcmDvho7_uid_unknown&tc=1
IP 185.184.10.30:0
ASN #203690 Rtb House S.A.
File type ASCII text, with very long lines (1115), with no line terminators
Hash 0e639a7462ee2797e7e3b47435c9819e
d93f5afaead1b788edfe9470e82e748c38d5ea58
ca4ef93c1ce27228965fc0d445566ea45594b150e769f54cbc0473431e2cfb1f
GET /tags?type=script&id=pr_oUmt0LP6DaxLCcmDvho7_home&id=pr_oUmt0LP6DaxLCcmDvho7_uid_unknown&tc=1 HTTP/1.1
Host: us.creativecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.customink.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-max-age: 3600
vary: Origin, Accept-Encoding
content-type: application/javascript; charset=UTF-8
cache-control: no-cache, no-store, must-revalidate, private, max-age=0
pragma: no-cache
date: Thu, 22 Sep 2022 18:09:16 GMT, Thu, 22 Sep 2022 18:09:16 GMT
expires: Thu, 01 Jan 1970 00:00:00 GMT
content-encoding: gzip
content-length: 599
X-Firefox-Spdy: h2
b.clarity.ms/collect
20.75.32.255204 No Content 0 B IP 20.75.32.255:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: b.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 785
Origin: https://www.customink.com
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
access-control-allow-origin: https://www.customink.com
access-control-allow-credentials: true
x-powered-by: ASP.NET
date: Thu, 22 Sep 2022 18:09:16 GMT
X-Firefox-Spdy: h2
b.clarity.ms/collect
20.75.32.255204 No Content 0 B IP 20.75.32.255:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: b.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 824
Origin: https://www.customink.com
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
access-control-allow-origin: https://www.customink.com
access-control-allow-credentials: true
x-powered-by: ASP.NET
date: Thu, 22 Sep 2022 18:09:16 GMT
X-Firefox-Spdy: h2
liveapi.yext.com/v2/accounts/me/entities/geosearch?v=20190117&api_key=2181ea8f899d7b657336dbb29c643737&location=59.955,10.859&radius=15&filter=%7B%0A%20%20%27c_show%27%3A%20%7B%0A%20%20%20%20%27%24eq%27%3A%20true%0A%20%20%7D%0A%7D
104.18.173.63200 OK 138 B URL HTTP/2 liveapi.yext.com/v2/accounts/me/entities/geosearch?v=20190117&api_key=2181ea8f899d7b657336dbb29c643737&location=59.955,10.859&radius=15&filter=%7B%0A%20%20%27c_show%27%3A%20%7B%0A%20%20%20%20%27%24eq%27%3A%20true%0A%20%20%7D%0A%7D
IP 104.18.173.63:0
Hash ca70f469ecd017d0c163d5a79d275130
e441e4c0e541570e891b7732dcb1823eb24e54c0
8088ad23669fcce2929f278404b983259d80e89ec5defe176c84243284ca4355
GET /v2/accounts/me/entities/geosearch?v=20190117&api_key=2181ea8f899d7b657336dbb29c643737&location=59.955,10.859&radius=15&filter=%7B%0A%20%20%27c_show%27%3A%20%7B%0A%20%20%20%20%27%24eq%27%3A%20true%0A%20%20%7D%0A%7D HTTP/1.1
Host: liveapi.yext.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.customink.com
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Sep 2022 18:09:16 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
cache-control: no-cache
rate-limit-limit: 100000
rate-limit-remaining: 99832
rate-limit-reset: 1663873200
referrer-policy: no-referrer
strict-transport-security: max-age=31536000; includeSubDomains
vary: Accept-Encoding
yext-uuid: 01GDK67FA0R404AF2YBSZBMTVE
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=zffI7QzsQUdwz92to_xo9KXFw2q3lboiVUSoZSChGlI-1663870156-0-AYia8RxJgojHngBoAKZYwhz3DpXytoAiZmHw3H85zIvZssDic7MdHY/Jp/W7o7v50Bvy4N4zaR6BEW6Dna+6iimM4iB0eBvNEnK2AEsqi2xd; path=/; expires=Thu, 22-Sep-22 18:39:16 GMT; domain=.yext.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 74ecfd9b684ab51b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
errors.client.optimizely.com/log
34.192.166.177200 OK 13 B URL HTTP/1.1 errors.client.optimizely.com/log
IP 34.192.166.177:0
File type ASCII text, with no line terminators
Hash 1424eb76249899d757e4d168341a50dc
42101e71440abd46c8112a96d4d5c0dd445120ce
16f1efa415bfdd7abcf8fdd76cc05ae6fa66ffdfdc730368ecea89ecfe5c3a12
OPTIONS /log HTTP/1.1
Host: errors.client.optimizely.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.customink.com/
Origin: https://www.customink.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: X-Requested-With,Content-Type,Accept,Origin
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Origin: https://www.customink.com
Access-Control-Max-Age: 1800
Allow: POST,OPTIONS
Content-Type: text/plain
Date: Thu, 22 Sep 2022 18:09:16 GMT
Content-Length: 13
Connection: keep-alive
us.creativecdn.com/tags?type=iframe&id=pr_oUmt0LP6DaxLCcmDvho7_home&id=pr_oUmt0LP6DaxLCcmDvho7_uid_unknown&tc=1
185.184.10.30200 OK 26 B URL HTTP/2 us.creativecdn.com/tags?type=iframe&id=pr_oUmt0LP6DaxLCcmDvho7_home&id=pr_oUmt0LP6DaxLCcmDvho7_uid_unknown&tc=1
IP 185.184.10.30:0
ASN #203690 Rtb House S.A.
File type HTML document, ASCII text, with no line terminators
Hash b256d97fbb697428b7a1286ea33539c0
7e4e54e0434406746420141881f419ac165d3edc
f70b370debd085dd9e9fb6495c796cdccf41c44574cc185dbe124f3ea8237623
GET /tags?type=iframe&id=pr_oUmt0LP6DaxLCcmDvho7_home&id=pr_oUmt0LP6DaxLCcmDvho7_uid_unknown&tc=1 HTTP/1.1
Host: us.creativecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-max-age: 3600
vary: Origin, Accept-Encoding
content-type: text/html;charset=utf-8
cache-control: no-cache, no-store, must-revalidate, private, max-age=0
pragma: no-cache
date: Thu, 22 Sep 2022 18:09:16 GMT, Thu, 22 Sep 2022 18:09:16 GMT
expires: Thu, 01 Jan 1970 00:00:00 GMT
content-length: 26
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash f27748e868da21c4fe9f35ae5eb5c6bb
f737c964012b0bfebf742553122117c617b0de4f
8c6d135480700b1655425ff57b2e6c1f4a4f5e46419429a5e0d9b6dc3fe62cd1
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 18:09:16 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 19 Sep 2022 23:37:42 GMT
Expires: Mon, 26 Sep 2022 23:37:41 GMT
Etag: "f737c964012b0bfebf742553122117c617b0de4f"
Cache-Control: max-age=364704,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74ecfd9e6b2f0b06-OSL
errors.client.optimizely.com/log
34.192.166.177204 No Content 0 B URL HTTP/1.1 errors.client.optimizely.com/log
IP 34.192.166.177:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /log HTTP/1.1
Host: errors.client.optimizely.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 330
Origin: https://www.customink.com
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.customink.com
Access-Control-Expose-Headers:
Content-Type: text/plain
Date: Thu, 22 Sep 2022 18:09:16 GMT
Connection: keep-alive
errors.client.optimizely.com/log
34.192.166.177204 No Content 0 B URL HTTP/1.1 errors.client.optimizely.com/log
IP 34.192.166.177:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /log HTTP/1.1
Host: errors.client.optimizely.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 330
Origin: https://www.customink.com
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.customink.com
Access-Control-Expose-Headers:
Content-Type: text/plain
Date: Thu, 22 Sep 2022 18:09:16 GMT
Connection: keep-alive
ocsps.ssl.com/
52.6.97.148200 OK 1.9 kB IP 52.6.97.148:0
Hash 3391762cdb2df943a459b3ce1fcc4e59
c23480219557a1d30edb20a1fbffac5056ff11a4
4eb37ad5242609e125495b76325baa508a2765e279ee37a88d77613b625eaefc
POST / HTTP/1.1
Host: ocsps.ssl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 18:09:16 GMT
Content-Type: application/ocsp-response
Content-Length: 1883
Connection: keep-alive
Expires: Thu, 29 Sep 2022 14:15:22 GMT
Cache-Control: max-age=86400,public,no-transform,must-revalidate
ETag: "c23480219557a1d30edb20a1fbffac5056ff11a4"
Last-Modified: Thu, 22 Sep 2022 14:15:23 GMT
X-Proxy-Cache: HIT
udc-neb.kampyle.com/egw/5/qceuv8449dzg58ptt1bhda9g8ue19c7s/track/__cool.gif?data=eyJldmVudHMiOiBbCiAgICB7InNlc3Npb25fc2NyZWVuX3NpemUiOiAiMTI4MHgxMDI0Iiwic2Vzc2lvbl9kdWEiOiAiTW96aWxsYS81LjAgKFgxMTsgTGludXggeDg2XzY0OyBydjo5Ni4wKSBHZWNrby8yMDEwMDEwMSBGaXJlZm94Lzk2LjAiLCJzZXNzaW9uX3BsYXRmb3JtIjogIkxpbnV4IHg4Nl82NCIsInBhZ2VfdGl0bGUiOiAiQ3VzdG9tIFQtc2hpcnRzIC0gRGVzaWduIFQtc2hpcnRzLCBBcHBhcmVsICYgUHJvbW8gUHJvZHVjdHMgT25saW5lIiwicGFnZV91cmwiOiAiaHR0cHM6Ly93d3cuY3VzdG9taW5rLmNvbS8iLCJ0cmFja2VyX3R5cGUiOiAiamF2YXNjcmlwdCIsInRyYWNrZXJfdmVyc2lvbiI6ICIyLjIuMjMiLCJldmVudF9uYW1lIjogIm5lYnVsYV9wYWdlX3ZpZXciLCJldmVudF90aW1lc3RhbXBfZXBvY2giOiAiMTY2Mzg3MDE1NjEwOSIsImV2ZW50X3RpbWV6b25lX29mZnNldCI6IDAsInVzZXJfaWQiOiAiMTgzNjY2M2JkNDU1YjMtMGY3Yjk3MDRiMjMzOGYtMzA2ZDQ2NGEtMTQwMDAwLTE4MzY2NjNiZDQ2YjkiLCJlbnZpcm9tZW50IjogImRpZ2l0YWwtY2xvdWQtd2VzdCIsImFjY291bnRJZCI6IDU0MTcsInVybCI6ICJodHRwczovL3d3dy5jdXN0b21pbmsuY29tLyIsIndlYnNpdGVJZCI6IDU1NDgsImZvcm1JZCI6IG51bGwsImZvcm1UcmlnZ2VyVHlwZSI6IG51bGwsImthbXB5bGVfZGF0YSI6IHsibWRfaXNTdXJ2ZXlTdWJtaXR0ZWRJblNlc3Npb24iOiAiIiwiTEFTVF9JTlZJVEFUSU9OX1ZJRVciOiAiIiwiREVDTElORURfREFURSI6ICIiLCJrYW1weWxlSW52aXRlUHJlc2VudGVkIjogIiIsImthbXB5bGVfdXNlcmlkIjogIjhlZjEtNzU4ZC1kODNjLTIyMWYtMWJhNS1lYjkxLTg1YTMtMDMzNCIsImthbXB5bGVVc2VyU2Vzc2lvbiI6ICIxNjYzODcwMTU2MTA4Iiwia2FtcHlsZVVzZXJQZXJjZW50aWxlIjogIiIsIlNVQk1JVFRFRF9EQVRFIjogIiJ9LCJjb29raWVfc2l6ZSI6IDEyODgsImthbXB5bGVfdmVyc2lvbiI6ICIyLjQ3LjMiLCJvbnNpdGVfdmVyc2lvbiI6ICIyLjQ3LjMiLCJoaXN0b3J5X2xlbmd0aCI6IDEsImV2ZW50X2xvY2FsX3RpbWVzdGFtcCI6IDE2NjM4NzAxNTYxMDksInBvc2l0aW9uIjogbnVsbCwiaXNVc2VySWRlbnRpZmllZCI6IGZhbHNlLCJmZWVkYmFja19jb3JyZWxhdGlvbl91dWlkIjogbnVsbH0KXX0=
35.241.45.82200 OK 0 B URL HTTP/2 udc-neb.kampyle.com/egw/5/qceuv8449dzg58ptt1bhda9g8ue19c7s/track/__cool.gif?data=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
IP 35.241.45.82:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /egw/5/qceuv8449dzg58ptt1bhda9g8ue19c7s/track/__cool.gif?data=eyJldmVudHMiOiBbCiAgICB7InNlc3Npb25fc2NyZWVuX3NpemUiOiAiMTI4MHgxMDI0Iiwic2Vzc2lvbl9kdWEiOiAiTW96aWxsYS81LjAgKFgxMTsgTGludXggeDg2XzY0OyBydjo5Ni4wKSBHZWNrby8yMDEwMDEwMSBGaXJlZm94Lzk2LjAiLCJzZXNzaW9uX3BsYXRmb3JtIjogIkxpbnV4IHg4Nl82NCIsInBhZ2VfdGl0bGUiOiAiQ3VzdG9tIFQtc2hpcnRzIC0gRGVzaWduIFQtc2hpcnRzLCBBcHBhcmVsICYgUHJvbW8gUHJvZHVjdHMgT25saW5lIiwicGFnZV91cmwiOiAiaHR0cHM6Ly93d3cuY3VzdG9taW5rLmNvbS8iLCJ0cmFja2VyX3R5cGUiOiAiamF2YXNjcmlwdCIsInRyYWNrZXJfdmVyc2lvbiI6ICIyLjIuMjMiLCJldmVudF9uYW1lIjogIm5lYnVsYV9wYWdlX3ZpZXciLCJldmVudF90aW1lc3RhbXBfZXBvY2giOiAiMTY2Mzg3MDE1NjEwOSIsImV2ZW50X3RpbWV6b25lX29mZnNldCI6IDAsInVzZXJfaWQiOiAiMTgzNjY2M2JkNDU1YjMtMGY3Yjk3MDRiMjMzOGYtMzA2ZDQ2NGEtMTQwMDAwLTE4MzY2NjNiZDQ2YjkiLCJlbnZpcm9tZW50IjogImRpZ2l0YWwtY2xvdWQtd2VzdCIsImFjY291bnRJZCI6IDU0MTcsInVybCI6ICJodHRwczovL3d3dy5jdXN0b21pbmsuY29tLyIsIndlYnNpdGVJZCI6IDU1NDgsImZvcm1JZCI6IG51bGwsImZvcm1UcmlnZ2VyVHlwZSI6IG51bGwsImthbXB5bGVfZGF0YSI6IHsibWRfaXNTdXJ2ZXlTdWJtaXR0ZWRJblNlc3Npb24iOiAiIiwiTEFTVF9JTlZJVEFUSU9OX1ZJRVciOiAiIiwiREVDTElORURfREFURSI6ICIiLCJrYW1weWxlSW52aXRlUHJlc2VudGVkIjogIiIsImthbXB5bGVfdXNlcmlkIjogIjhlZjEtNzU4ZC1kODNjLTIyMWYtMWJhNS1lYjkxLTg1YTMtMDMzNCIsImthbXB5bGVVc2VyU2Vzc2lvbiI6ICIxNjYzODcwMTU2MTA4Iiwia2FtcHlsZVVzZXJQZXJjZW50aWxlIjogIiIsIlNVQk1JVFRFRF9EQVRFIjogIiJ9LCJjb29raWVfc2l6ZSI6IDEyODgsImthbXB5bGVfdmVyc2lvbiI6ICIyLjQ3LjMiLCJvbnNpdGVfdmVyc2lvbiI6ICIyLjQ3LjMiLCJoaXN0b3J5X2xlbmd0aCI6IDEsImV2ZW50X2xvY2FsX3RpbWVzdGFtcCI6IDE2NjM4NzAxNTYxMDksInBvc2l0aW9uIjogbnVsbCwiaXNVc2VySWRlbnRpZmllZCI6IGZhbHNlLCJmZWVkYmFja19jb3JyZWxhdGlvbl91dWlkIjogbnVsbH0KXX0= HTTP/1.1
Host: udc-neb.kampyle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 22 Sep 2022 18:09:16 GMT
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-allow-methods: GET, POST, PUT, DELETE
access-control-allow-headers: X-Requested-With, Origin, Content-Type, Accept
access-control-max-age: 1800
x-me: prod-instance-gatewayservice-blue-1p21
x-application-context: application:9090
content-type: image/gif; charset=UTF-8
content-length: 0
server: Jetty(9.2.11.v20150529)
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
accdn.lpsnmedia.net/api/account/23156914/configuration/engagement-window/window-confs/2499984830?cb=lpCb36543x27502
178.249.101.99200 OK 2.2 kB URL HTTP/2 accdn.lpsnmedia.net/api/account/23156914/configuration/engagement-window/window-confs/2499984830?cb=lpCb36543x27502
IP 178.249.101.99:0
Hash 5363b0970652a87ba49e41f12196b9cc
c75acfe10f8a92ed367f0d79cb6509b1f46915ad
183af4356e1a578d4cf1c742a1358ab689d24550e68c2c0a09b3a68a63807855
GET /api/account/23156914/configuration/engagement-window/window-confs/2499984830?cb=lpCb36543x27502 HTTP/1.1
Host: accdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Sep 2022 18:09:17 GMT
content-type: application/javascript
set-cookie: ADRUM_BTa=R:26|g:484f56f5-10a4-413b-9649-904e70b3cf62; Max-Age=30; Expires=Thu, 22-Sep-2022 18:09:47 GMT; Path=/
ADRUM_BTa=R:26|g:484f56f5-10a4-413b-9649-904e70b3cf62|n:livepersonltd_93a08561-b03e-475e-b29b-9ad4aa207daf; Max-Age=30; Expires=Thu, 22-Sep-2022 18:09:47 GMT; Path=/
SameSite=None; Max-Age=30; Expires=Thu, 22-Sep-2022 18:09:47 GMT; Path=/; Secure
ADRUM_BT1=R:26|i:2241585; Max-Age=30; Expires=Thu, 22-Sep-2022 18:09:47 GMT; Path=/
ADRUM_BT1=R:26|i:2241585|e:6; Max-Age=30; Expires=Thu, 22-Sep-2022 18:09:47 GMT; Path=/
vary: Accept
expires: Thu, 22 Sep 2022 18:10:17 GMT
x-envoy-upstream-service-time: 1
server: ws
strict-transport-security: max-age=99999999999; includeSubDomains
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
x-cache-status: EXPIRED
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
lpcdn.lpsnmedia.net/le_re/3.52.0.0-release_5108/jsv2/overlay.js?_v=3.52.0.0-release_5108
178.249.97.98200 OK 3.7 kB URL HTTP/2 lpcdn.lpsnmedia.net/le_re/3.52.0.0-release_5108/jsv2/overlay.js?_v=3.52.0.0-release_5108
IP 178.249.97.98:0
Hash 3ff302105b1eac103943f4d76d7b55bd
362c334e31911e741e52d6b4e5d287a11be3dba2
6aee7614e93033cfb7ee06abbed55e4d33b8bd41764f98ed49778f5b03c54d41
GET /le_re/3.52.0.0-release_5108/jsv2/overlay.js?_v=3.52.0.0-release_5108 HTTP/1.1
Host: lpcdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Sep 2022 18:09:17 GMT
content-type: application/javascript
last-modified: Mon, 08 Aug 2022 03:12:57 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Fri, 22 Sep 2023 18:09:17 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
X-Firefox-Spdy: h2
va.v.liveperson.net/api/js/23156914?sid=lh9kNqYRTBKTkGuPTbRydQ&cb=lpCb78595x92303&t=uc&ts=1663870155050&pid=6411764990&tid=6817259240&sdes=%5B%7B%22type%22%3A%22pagediv%22%2C%22divId%22%3A%22LP_DIV_RB_6687889599%22%7D%2C%7B%22type%22%3A%22pagediv%22%2C%22divId%22%3A%22LP_DIV_RB_0435608517%22%7D%2C%7B%22type%22%3A%22pagediv%22%2C%22divId%22%3A%22LP_DIV_RB_1501165477970%22%7D%2C%7B%22type%22%3A%22pagediv%22%2C%22divId%22%3A%22LP_DIV_SN2_0435608518%22%7D%2C%7B%22type%22%3A%22pagediv%22%2C%22divId%22%3A%22LP_DIV_1542654749058%22%7D%2C%7B%22type%22%3A%22pagediv%22%2C%22divId%22%3A%22LP_DIV_1611259357012%22%7D%5D&vid=FmZTgzYmVmYTBmZTkyYjIw
208.89.12.87200 OK 40 kB URL HTTP/2 va.v.liveperson.net/api/js/23156914?sid=lh9kNqYRTBKTkGuPTbRydQ&cb=lpCb78595x92303&t=uc&ts=1663870155050&pid=6411764990&tid=6817259240&sdes=%5B%7B%22type%22%3A%22pagediv%22%2C%22divId%22%3A%22LP_DIV_RB_6687889599%22%7D%2C%7B%22type%22%3A%22pagediv%22%2C%22divId%22%3A%22LP_DIV_RB_0435608517%22%7D%2C%7B%22type%22%3A%22pagediv%22%2C%22divId%22%3A%22LP_DIV_RB_1501165477970%22%7D%2C%7B%22type%22%3A%22pagediv%22%2C%22divId%22%3A%22LP_DIV_SN2_0435608518%22%7D%2C%7B%22type%22%3A%22pagediv%22%2C%22divId%22%3A%22LP_DIV_1542654749058%22%7D%2C%7B%22type%22%3A%22pagediv%22%2C%22divId%22%3A%22LP_DIV_1611259357012%22%7D%5D&vid=FmZTgzYmVmYTBmZTkyYjIw
IP 208.89.12.87:0
File type ASCII text, with very long lines (38033)
Hash f79eb7b8a84239d0423396fe4825d722
5fce5a8af2cceb48c8223ad126f63fee85dd9924
35c4ccc3eb49d49a870bc55f85c348203eb1c87a6fed3a07488baba54e2a55c6
GET /api/js/23156914?sid=lh9kNqYRTBKTkGuPTbRydQ&cb=lpCb78595x92303&t=uc&ts=1663870155050&pid=6411764990&tid=6817259240&sdes=%5B%7B%22type%22%3A%22pagediv%22%2C%22divId%22%3A%22LP_DIV_RB_6687889599%22%7D%2C%7B%22type%22%3A%22pagediv%22%2C%22divId%22%3A%22LP_DIV_RB_0435608517%22%7D%2C%7B%22type%22%3A%22pagediv%22%2C%22divId%22%3A%22LP_DIV_RB_1501165477970%22%7D%2C%7B%22type%22%3A%22pagediv%22%2C%22divId%22%3A%22LP_DIV_SN2_0435608518%22%7D%2C%7B%22type%22%3A%22pagediv%22%2C%22divId%22%3A%22LP_DIV_1542654749058%22%7D%2C%7B%22type%22%3A%22pagediv%22%2C%22divId%22%3A%22LP_DIV_1611259357012%22%7D%5D&vid=FmZTgzYmVmYTBmZTkyYjIw HTTP/1.1
Host: va.v.liveperson.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Sep 2022 18:09:17 GMT
content-type: application/javascript
cache-control: no-store
server: ws
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 088fd54c49c3761d7537bd8ceadf8af4
c450a99446fadeaa81f2426367b7d200d11ef67d
9e171b74ae7c3f96a03cf14f423b05ab0ad7329844061b9200d81f6bc381a561
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6301
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 18:09:17 GMT
Last-Modified: Thu, 22 Sep 2022 16:24:16 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
accdn.lpsnmedia.net/api/account/23156914/configuration/engagement-window/window-confs/2499984830?cb=lpCb11704x89314
178.249.101.99200 OK 1.7 kB URL HTTP/2 accdn.lpsnmedia.net/api/account/23156914/configuration/engagement-window/window-confs/2499984830?cb=lpCb11704x89314
IP 178.249.101.99:0
Hash fe57332ac036475e11cc84a3633b4190
225dfd2913e763d45c7000f49479dd75c4c578ec
a8bdf1dc05a591eaa8734259234568a23c4d54d00569f5e8d49b63b08e859706
GET /api/account/23156914/configuration/engagement-window/window-confs/2499984830?cb=lpCb11704x89314 HTTP/1.1
Host: accdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Sep 2022 18:09:17 GMT
content-type: application/javascript
set-cookie: ADRUM_BTa=R:26|g:6e755020-4a74-4026-9897-c4abc2157aff; Max-Age=30; Expires=Thu, 22-Sep-2022 18:09:47 GMT; Path=/
ADRUM_BTa=R:26|g:6e755020-4a74-4026-9897-c4abc2157aff|n:livepersonltd_93a08561-b03e-475e-b29b-9ad4aa207daf; Max-Age=30; Expires=Thu, 22-Sep-2022 18:09:47 GMT; Path=/
SameSite=None; Max-Age=30; Expires=Thu, 22-Sep-2022 18:09:47 GMT; Path=/; Secure
ADRUM_BT1=R:26|i:2241585; Max-Age=30; Expires=Thu, 22-Sep-2022 18:09:47 GMT; Path=/
ADRUM_BT1=R:26|i:2241585|e:8; Max-Age=30; Expires=Thu, 22-Sep-2022 18:09:47 GMT; Path=/
vary: Accept
expires: Thu, 22 Sep 2022 18:10:17 GMT
x-envoy-upstream-service-time: 3
server: ws
strict-transport-security: max-age=99999999999; includeSubDomains
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
x-cache-status: EXPIRED
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
insight.adsrvr.org/track/up?adv=qwofahm&ref=https%3A%2F%2Fwww.customink.com%2F&upid=49lnbqn&upv=1.1.0&td1=&td2=&v=
15.197.193.217200 OK 6.2 kB URL HTTP/2 insight.adsrvr.org/track/up?adv=qwofahm&ref=https%3A%2F%2Fwww.customink.com%2F&upid=49lnbqn&upv=1.1.0&td1=&td2=&v=
IP 15.197.193.217:0
File type gzip compressed data\012- data
Hash ab5a2e3f2414c0a2b622e48c0b6da2fd
1a894787bde6cbf9b58d47b8f4245607420112ad
a5ef19cf7ca85f760c462ed2f228430c8d0a6d9daf3aa34894a5c42113cfdb8f
GET /track/up?adv=qwofahm&ref=https%3A%2F%2Fwww.customink.com%2F&upid=49lnbqn&upv=1.1.0&td1=&td2=&v= HTTP/1.1
Host: insight.adsrvr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Sep 2022 18:09:16 GMT
content-type: text/html
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
va.v.liveperson.net/api/js/23156914?&cb=lpCb48539x94318&t=sp&ts=1663870154702&pid=6411764990&tid=6817259240&pt=Custom%20T-shirts%20-%20Design%20T-shirts%2C%20Apparel%20%26%20Promo%20Products%20Online&u=https%3A%2F%2Fwww.customink.com%2F&df=0&os=2&identities=%5B%7B%22iss%22%3A%22LivePerson%22%2C%22acr%22%3A%220%22%7D%5D
208.89.12.87200 OK 689 B URL HTTP/2 va.v.liveperson.net/api/js/23156914?&cb=lpCb48539x94318&t=sp&ts=1663870154702&pid=6411764990&tid=6817259240&pt=Custom%20T-shirts%20-%20Design%20T-shirts%2C%20Apparel%20%26%20Promo%20Products%20Online&u=https%3A%2F%2Fwww.customink.com%2F&df=0&os=2&identities=%5B%7B%22iss%22%3A%22LivePerson%22%2C%22acr%22%3A%220%22%7D%5D
IP 208.89.12.87:0
Hash 94c8a5ec76dd88efe7b2b5dd26f5da6f
bfb4f8bed9460cb44e2b164ea10a444a9328e39b
4e5cc3cf1fb22bc7cb36a1954a98aa08f3cfd855d226e60ee6af394e4de3f942
GET /api/js/23156914?&cb=lpCb48539x94318&t=sp&ts=1663870154702&pid=6411764990&tid=6817259240&pt=Custom%20T-shirts%20-%20Design%20T-shirts%2C%20Apparel%20%26%20Promo%20Products%20Online&u=https%3A%2F%2Fwww.customink.com%2F&df=0&os=2&identities=%5B%7B%22iss%22%3A%22LivePerson%22%2C%22acr%22%3A%220%22%7D%5D HTTP/1.1
Host: va.v.liveperson.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 22 Sep 2022 18:09:16 GMT
content-type: application/javascript
set-cookie: LPVisitorID=FmZTgzYmVmYTBmZTkyYjIw; Expires=Fri, 22-Sep-2023 18:09:16 GMT; Path=/; HttpOnly
LPSessionID=lh9kNqYRTBKTkGuPTbRydQ; Path=/api/js/23156914; HttpOnly
cache-control: no-store
server: ws
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
secure.quantserve.com/quant.js
91.228.74.168200 OK 11 kB URL HTTP/2 secure.quantserve.com/quant.js
IP 91.228.74.168:0
Hash 784bece49b76a5b7f705ff243c5c0cdf
f8ab9b5c93290c6452ed99e2f217997d58bdd832
62587a3a9d3f970454691b881cef636d3daafa02083a124ab72e10c45cfb313f
GET /quant.js HTTP/1.1
Host: secure.quantserve.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 22 Sep 2022 18:09:18 GMT
content-type: application/javascript
accept-ranges: bytes
cache-control: private, max-age=604800
content-encoding: gzip
etag: "eN3sxSgaav0x5wHLxGB1gQ=="
expires: Thu, 29 Sep 2022 18:09:18 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
pixel.quantserve.com/pixel;r=2063945440;labels=_fp.event.Default;rf=0;a=p-BUjach_RzVDf0;url=https%3A%2F%2Fwww.customink.com%2F;uht=2;fpan=0;fpa=P0-2121874639-1663870157569;pbc=;ns=0;ce=1;qjs=1;qv=d18171e5-20220913105912;cm=;gdpr=0;ref=;d=customink.com;dst=0;et=1663870157572;tzo=0;ogl=title.Bring%20your%20group%20together%20with%20custom%20t-shirts%20%26%20more!%2Cdescription.Customize%20the%20perfect%20products%20to%20connect%20your%20crew%252C%20build%20your%20brand%252C%20or%20elevat%2Cimage.https%3A%2F%2Fwww%252Ecustomink%252Ecom%2Fassets%2Fsite_content%2Fpages%2Fhome%2Ffacebook-opengraph-10a2%2Curl.https%3A%2F%2Fwww%252Ecustomink%252Ecom%2Csite_name.CustomInk%252Ecom%2Ctype.website;ses=ad511719-144a-4ec3-a9af-eeb5314d01dd
91.228.74.168200 OK 35 B URL HTTP/2 pixel.quantserve.com/pixel;r=2063945440;labels=_fp.event.Default;rf=0;a=p-BUjach_RzVDf0;url=https%3A%2F%2Fwww.customink.com%2F;uht=2;fpan=0;fpa=P0-2121874639-1663870157569;pbc=;ns=0;ce=1;qjs=1;qv=d18171e5-20220913105912;cm=;gdpr=0;ref=;d=customink.com;dst=0;et=1663870157572;tzo=0;ogl=title.Bring%20your%20group%20together%20with%20custom%20t-shirts%20%26%20more!%2Cdescription.Customize%20the%20perfect%20products%20to%20connect%20your%20crew%252C%20build%20your%20brand%252C%20or%20elevat%2Cimage.https%3A%2F%2Fwww%252Ecustomink%252Ecom%2Fassets%2Fsite_content%2Fpages%2Fhome%2Ffacebook-opengraph-10a2%2Curl.https%3A%2F%2Fwww%252Ecustomink%252Ecom%2Csite_name.CustomInk%252Ecom%2Ctype.website;ses=ad511719-144a-4ec3-a9af-eeb5314d01dd
IP 91.228.74.168:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 55d25e9dc950d5db4d53a3b195c046c6
75e91ae3e549dab12ed1c9787ade9131aef1c981
a0d3a0aff7dc3bf32d2176fc3dcda6e7aba2867c4f4d1f7af6355d2cfc6c44f8
GET /pixel;r=2063945440;labels=_fp.event.Default;rf=0;a=p-BUjach_RzVDf0;url=https%3A%2F%2Fwww.customink.com%2F;uht=2;fpan=0;fpa=P0-2121874639-1663870157569;pbc=;ns=0;ce=1;qjs=1;qv=d18171e5-20220913105912;cm=;gdpr=0;ref=;d=customink.com;dst=0;et=1663870157572;tzo=0;ogl=title.Bring%20your%20group%20together%20with%20custom%20t-shirts%20%26%20more!%2Cdescription.Customize%20the%20perfect%20products%20to%20connect%20your%20crew%252C%20build%20your%20brand%252C%20or%20elevat%2Cimage.https%3A%2F%2Fwww%252Ecustomink%252Ecom%2Fassets%2Fsite_content%2Fpages%2Fhome%2Ffacebook-opengraph-10a2%2Curl.https%3A%2F%2Fwww%252Ecustomink%252Ecom%2Csite_name.CustomInk%252Ecom%2Ctype.website;ses=ad511719-144a-4ec3-a9af-eeb5314d01dd HTTP/1.1
Host: pixel.quantserve.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Sep 2022 18:09:18 GMT
content-type: image/gif
content-length: 35
cache-control: private, no-cache, no-store, proxy-revalidate
expires: Fri, 04 Aug 1978 12:00:00 GMT
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAo PSDo OUR SAMa IND COM NAV"
pragma: no-cache
set-cookie: mc=632ca4ce-1afdb-01550-3c0c1; expires=Mon, 23-Oct-2023 18:09:18 GMT; path=/; domain=.quantserve.com
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 6db6c560a3def8d8aa108fb8deb61eaa
31c1836a706646c034e26d16ca2d26b68af029a8
1367ca195edf44c4958e32d34035732d34e48849516d8eaf6c24c75b22c97916
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 18:09:18 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 21 Sep 2022 02:15:45 GMT
Expires: Wed, 28 Sep 2022 02:15:44 GMT
Etag: "31c1836a706646c034e26d16ca2d26b68af029a8"
Cache-Control: max-age=460585,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74ecfda79cc90b06-OSL
accdn.lpsnmedia.net/api/account/23156914/configuration/le-campaigns/campaigns/1182604612/engagements/1316379114/revision/2057?v=3.0&cb=lp1316379114&flavor=dependency
178.249.101.99200 OK 3.9 kB URL HTTP/2 accdn.lpsnmedia.net/api/account/23156914/configuration/le-campaigns/campaigns/1182604612/engagements/1316379114/revision/2057?v=3.0&cb=lp1316379114&flavor=dependency
IP 178.249.101.99:0
Hash bb4dbca5c7d87ff3d80e70f511de42fd
60d3ed375f8fb841a8153258bad5f7f6839756df
3a8510d20b2dea9e429d07a54d04f0887f907abb3523768e92755734b37448a1
GET /api/account/23156914/configuration/le-campaigns/campaigns/1182604612/engagements/1316379114/revision/2057?v=3.0&cb=lp1316379114&flavor=dependency HTTP/1.1
Host: accdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Sep 2022 18:09:17 GMT
content-type: application/javascript
set-cookie: ADRUM_BTa=R:26|g:266b7a89-e338-4abc-9585-9d37873c9484; Max-Age=30; Expires=Thu, 22-Sep-2022 18:09:47 GMT; Path=/
ADRUM_BTa=R:26|g:266b7a89-e338-4abc-9585-9d37873c9484|n:livepersonltd_93a08561-b03e-475e-b29b-9ad4aa207daf; Max-Age=30; Expires=Thu, 22-Sep-2022 18:09:47 GMT; Path=/
SameSite=None; Max-Age=30; Expires=Thu, 22-Sep-2022 18:09:47 GMT; Path=/; Secure
ADRUM_BT1=R:26|i:2241585; Max-Age=30; Expires=Thu, 22-Sep-2022 18:09:47 GMT; Path=/
ADRUM_BT1=R:26|i:2241585|e:8; Max-Age=30; Expires=Thu, 22-Sep-2022 18:09:47 GMT; Path=/
vary: Accept
expires: Thu, 22 Sep 2022 18:10:17 GMT
x-envoy-upstream-service-time: 2
server: ws
strict-transport-security: max-age=99999999999; includeSubDomains
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
x-cache-status: EXPIRED
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
live.rezync.com/pixel?c=bd8618c307ae9885a12561b7191e2cea&cid=5123196423319086722&referrer=https%3A%2F%2Fwww.customink.com%2F
143.204.55.106302 Found 661 B URL HTTP/2 live.rezync.com/pixel?c=bd8618c307ae9885a12561b7191e2cea&cid=5123196423319086722&referrer=https%3A%2F%2Fwww.customink.com%2F
IP 143.204.55.106:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (575)
Hash 30edf630850c03c2133eb58f39c31d06
9176a681daf91c35eaff48b59b49b656409276a7
7d1f07d98fa32870b9df23160d1f228402dbaaf7ca8dd2a0352683a57adc23b2
GET /pixel?c=bd8618c307ae9885a12561b7191e2cea&cid=5123196423319086722&referrer=https%3A%2F%2Fwww.customink.com%2F HTTP/1.1
Host: live.rezync.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20814341p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/html; charset=utf-8
content-length: 661
location: https://p.rfihub.com/cm?pub=39342&in=0&userid=577b985f-e759-48e8-90d1-a2e4520a9a25%3A1663870158.4256022&forward=https%3A//idsync.rlcdn.com/501709.gif%3Fpartner_uid%3D577b985f-e759-48e8-90d1-a2e4520a9a25%253A1663870158.4256022
date: Thu, 22 Sep 2022 18:09:18 GMT
set-cookie: zync-uuid=577b985f-e759-48e8-90d1-a2e4520a9a25:1663870158.4256022; Domain=rezync.com; Expires=Tue, 21 Mar 2023 11:09:18 GMT; Path=/; SameSite=None; Secure
sd-session-id=.eJwVjEEOgyAQAP-yZzGwsLDwGUPrmpBW2rj2UtO_V0-TSSZzwPSWba1d-g5l3z4ywP3ZTlMoB2j7rvKAAuTQuxwD-hOWY0KE3wAqqu3VpzZfTUq3zLQYSZRNYGGT7exMRQmEtuaKVFyMnpN1xGNAivb6_AGcaSUW.Yyykzg.nRKGu9GIByd0nvO1IwJ5FS6Nunk; Expires=Tue, 21 Mar 2023 18:09:18 GMT; HttpOnly; Path=/; SameSite=None; Secure
vary: Cookie
server: lighttpd/1.4.59
x-cache: Miss from cloudfront
via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: wV0V673J8eXvQdk7-uSNHlZPrOu9dSw1wIp_zZiSmGpSlKXfcHvaPw==
X-Firefox-Spdy: h2
contextual.media.net/cksync.php?cs=3&type=rkt&ovsid=5123196423319086722
23.38.200.22200 OK 45 B URL HTTP/2 contextual.media.net/cksync.php?cs=3&type=rkt&ovsid=5123196423319086722
IP 23.38.200.22:0
File type GIF image data, version 87a, 1 x 1\012- data
Hash 99cceceaed4d575484b69ddaf9ed66a7
1e3a3b15296b585833a22d987a387aa58aa1642d
832f63f4187160c195b04f1911c2e623a75e805f4b23abb9b0bea214b4283a43
GET /cksync.php?cs=3&type=rkt&ovsid=5123196423319086722 HTTP/1.1
Host: contextual.media.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20814341p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
content-length: 45
content-type: image/gif
set-cookie: visitor-id=3068717583580299000V10; Expires=Fri, 22 Sep 2023 18:09:18 GMT; domain=.media.net; Path=/;
data-rk=5123196423319086722~~3;Expires=Thu, 21 Sep 2023 18:09:18 GMT;path=/;domain=.media.net;
p3p: CP="NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA", CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA, CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA
strict-transport-security: max-age=31536000
x-mnet-hl2: E
expires: Thu, 22 Sep 2022 18:09:18 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 22 Sep 2022 18:09:18 GMT
X-Firefox-Spdy: h2
dsum-sec.casalemedia.com/rum?cm_dsp_id=57&external_user_id=5123196423319086722&forward=
104.18.18.126302 Found 0 B URL HTTP/2 dsum-sec.casalemedia.com/rum?cm_dsp_id=57&external_user_id=5123196423319086722&forward=
IP 104.18.18.126:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rum?cm_dsp_id=57&external_user_id=5123196423319086722&forward= HTTP/1.1
Host: dsum-sec.casalemedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20814341p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 22 Sep 2022 18:09:18 GMT
content-length: 0
location: /rum?cm_dsp_id=57&external_user_id=5123196423319086722&forward=&C=1
cf-ray: 74ecfdab8c2e1c0e-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
pragma: no-cache
set-cookie: CMID=YyykztoohhE5LkY0GYp12gAA; Path=/; Domain=casalemedia.com; Expires=Fri, 22 Sep 2023 18:09:18 GMT; Max-Age=31536000; Secure; SameSite=None
CMPS=4442; Path=/; Domain=casalemedia.com; Expires=Wed, 21 Dec 2022 18:09:18 GMT; Max-Age=7776000; Secure; SameSite=None
CMPRO=4442; Path=/; Domain=casalemedia.com; Expires=Wed, 21 Dec 2022 18:09:18 GMT; Max-Age=7776000; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uguQsXRvPN%2FmKu6ot%2FD2SGAmmaf9Q5PtViz3m%2BH%2F%2BgeDo2ElKHTrVruQXPmmYkhEX5IVTBoWZf%2FDISnZSwj9IsbtG4gfegNlddjeUX8yVsiOQKsElKX0sG5VUDTqFTsVW8AmwQc%2FC2e%2BPw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e2d0f4f4dfaba4dec7031f8e676caca2
6534b730950d3dcb40abb9d8f9033a5655f9eb80
e780eb5d9601306a8bfb9186281e8abdc00ff59e81429f72fd3e685b94a1da71
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4821
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 18:09:18 GMT
Last-Modified: Thu, 22 Sep 2022 16:48:57 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
cm.g.doubleclick.net/pixel?&in=0&google_nid=zeta_interactive&google_cm=&google_sc=&google_hm=NTEyMzE5NjQyMzMxOTA4NjcyMg==&forward=
142.250.74.66302 Found 369 B URL HTTP/2 cm.g.doubleclick.net/pixel?&in=0&google_nid=zeta_interactive&google_cm=&google_sc=&google_hm=NTEyMzE5NjQyMzMxOTA4NjcyMg==&forward=
IP 142.250.74.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash c04074374afb530ad7d0e8ac784bb175
218cb40c13fccf383b9b34775a29b32108c78f01
082e00cceabbc7441a787a6b3d0a3631c169f55d71fb89f5c204b6d8310144a1
GET /pixel?&in=0&google_nid=zeta_interactive&google_cm=&google_sc=&google_hm=NTEyMzE5NjQyMzMxOTA4NjcyMg==&forward= HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20814341p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
location: https://cm.g.doubleclick.net/pixel?in=0&google_nid=zeta_interactive&google_cm=&google_sc=&google_hm=NTEyMzE5NjQyMzMxOTA4NjcyMg==&forward=&google_tc=
date: Thu, 22 Sep 2022 18:09:18 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 369
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 22-Sep-2022 18:24:18 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash c7e84632323498ce506da9106019f9ff
6707b33e6adb191fde5b84fc69e04e52fddb4558
be1811bbcc1c6c6b67d26058552e640f3a109b289f71a9f225c1e0b7b628402f
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 22 Sep 2022 18:09:18 GMT
Last-Modified: Thu, 22 Sep 2022 17:26:10 GMT
Server: ECS (bsa/EB1B)
X-Cache: Miss from cloudfront
Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ZEzwYsrzaLI6Iq7DwjoZKqk-PESWxbU_jY4BVkWrshU7JyZFbShxig==
Age: 2588
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash a3b00c4674ee0386430e963a8ca3a040
f2cb59ace17ff9d8c7273a3f5d76887700f457a0
17d6cf90b88f4e2897173116ca300b3dbd613af3aca9bfcdbf69adbb3883aa38
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 18:09:18 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 21 Sep 2022 13:42:56 GMT
Expires: Wed, 28 Sep 2022 13:42:55 GMT
Etag: "f2cb59ace17ff9d8c7273a3f5d76887700f457a0"
Cache-Control: max-age=501816,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74ecfdabb8ec0b06-OSL
ib.adnxs.com/setuid?entity=18&code=5123196423319086722
37.252.173.62307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/setuid?entity=18&code=5123196423319086722
IP 37.252.173.62:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /setuid?entity=18&code=5123196423319086722 HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20814341p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Thu, 22 Sep 2022 18:09:18 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Location: https://ib.adnxs.com/bounce?%2Fsetuid%3Fentity%3D18%26code%3D5123196423319086722
AN-X-Request-Uuid: a1326355-8415-42b3-9c6d-dc62b118a881
Set-Cookie: uuid2=3298187439135152448; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 21-Dec-2022 18:09:18 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 535.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
cm.g.doubleclick.net/pixel?in=0&google_nid=zeta_interactive&google_cm=&google_sc=&google_hm=NTEyMzE5NjQyMzMxOTA4NjcyMg==&forward=&google_tc=
142.250.74.66302 Found 269 B URL HTTP/2 cm.g.doubleclick.net/pixel?in=0&google_nid=zeta_interactive&google_cm=&google_sc=&google_hm=NTEyMzE5NjQyMzMxOTA4NjcyMg==&forward=&google_tc=
IP 142.250.74.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 2ac1f21e70e438c7e2193d02ee7e9be0
f9a11bb626bad146751fc166f96b91f6aeae7eab
de4a04a623ca095cd229a54edeb3120d9dc94d227198b75cb9a0a69677ed7c85
GET /pixel?in=0&google_nid=zeta_interactive&google_cm=&google_sc=&google_hm=NTEyMzE5NjQyMzMxOTA4NjcyMg==&forward=&google_tc= HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20814341p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: https://a.rfihub.com/cm?pub=445&in=0&forward=&google_error=3
date: Thu, 22 Sep 2022 18:09:18 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 269
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pixel.rubiconproject.com/tap.php?v=13490&nid=2596&put=5123196423319086722&
213.19.162.90204 No Content 0 B URL HTTP/1.1 pixel.rubiconproject.com/tap.php?v=13490&nid=2596&put=5123196423319086722&
IP 213.19.162.90:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tap.php?v=13490&nid=2596&put=5123196423319086722& HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20814341p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 1da0c96602e9a1076eae4f5554c05cf3
Content-Type: image/gif
p.rfihub.com/cm?pub=24472&in=1
193.0.160.128302 Found 0 B URL HTTP/1.1 p.rfihub.com/cm?pub=24472&in=1
IP 193.0.160.128:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm?pub=24472&in=1 HTTP/1.1
Host: p.rfihub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20814341p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 302 Found
Date: Thu, 22 Sep 2022 18:09:18 GMT
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Set-Cookie: eud=H4sIAAAAAAAA_7vFwmtoZmZsYW5gaGphbmwBAAxefQ8QAAAA; Path=/; Domain=.rfihub.com; Expires=Tue, 17 Oct 2023 18:09:18 GMT; Secure; SameSite=None
rud=H4sIAAAAAAAA_-MSNjU0NjQwNzc3MjIzMrI0MzMzMhHiM9QtKczyNSoNqgg28XEEANF-vZwlAAAA; Path=/; Domain=.rfihub.com; Expires=Tue, 17 Oct 2023 18:09:18 GMT; Secure; SameSite=None
ruds=H4sIAAAAAAAA_-MSNjU0NjQwNzc3MjIzMrI0MzMzMhHiM9QtKczyNSoNqgg28XEEANF-vZwlAAAA; Path=/; Domain=.rfihub.com; Secure; SameSite=None
Location: https://ps.eyeota.net/match?uid=5131077722622966624&bid=omt9pi0
Content-Length: 0
Server: Jetty(9.3.29.v20201019)
dsum-sec.casalemedia.com/rum?cm_dsp_id=57&external_user_id=5123196423319086722&forward=&C=1
104.18.18.126200 OK 43 B URL HTTP/2 dsum-sec.casalemedia.com/rum?cm_dsp_id=57&external_user_id=5123196423319086722&forward=&C=1
IP 104.18.18.126:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /rum?cm_dsp_id=57&external_user_id=5123196423319086722&forward=&C=1 HTTP/1.1
Host: dsum-sec.casalemedia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20814341p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Sep 2022 18:09:18 GMT
content-type: image/gif
content-length: 43
cf-ray: 74ecfdabfcac1c0e-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
pragma: no-cache
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CkZiWmvbhl%2BJPvIVcpW8uYPjEEzx7vwnro4%2FGSmlDHDGB6oP4%2FEQT%2FCxUiSDKsEBUpAQkKrBXc%2BwF6ZJkCp0%2FZFTJ3KGezH5dk2R%2Fk0WZMzv6BTsjUpR0xir0TLIcIBBM5jrH4tkV5WB%2FA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b1fcd968410cdcce6e4efe960e601426
60826de9d1b62657ad779b48daea502dbebeb73d
cd967bb41f3c220d74d8963beac4f5f9361062e2c1692c7a262ce652af281077
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2325
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 18:09:18 GMT
Last-Modified: Thu, 22 Sep 2022 17:30:33 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
idsync.rlcdn.com/360947.gif?partner_uid=5123196423319086722
35.244.174.68200 OK 42 B URL HTTP/2 idsync.rlcdn.com/360947.gif?partner_uid=5123196423319086722
IP 35.244.174.68:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /360947.gif?partner_uid=5123196423319086722 HTTP/1.1
Host: idsync.rlcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20814341p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store
content-type: image/gif
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
set-cookie: rlas3=oq96E/MasxHUKJGeS83g7wUHDl+CIWZH6EIgn7pi72I=; Path=/; Domain=rlcdn.com; Expires=Fri, 22 Sep 2023 18:09:18 GMT; Secure; SameSite=None
pxrc=CAA=; Path=/; Domain=rlcdn.com; Expires=Mon, 21 Nov 2022 18:09:18 GMT; Secure; SameSite=None
timing-allow-origin: *
date: Thu, 22 Sep 2022 18:09:18 GMT
content-length: 42
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
p.rfihub.com/cm?pub=39342&in=0&userid=577b985f-e759-48e8-90d1-a2e4520a9a25%3A1663870158.4256022&forward=https%3A//idsync.rlcdn.com/501709.gif%3Fpartner_uid%3D577b985f-e759-48e8-90d1-a2e4520a9a25%253A1663870158.4256022
193.0.160.128302 Found 0 B URL HTTP/1.1 p.rfihub.com/cm?pub=39342&in=0&userid=577b985f-e759-48e8-90d1-a2e4520a9a25%3A1663870158.4256022&forward=https%3A//idsync.rlcdn.com/501709.gif%3Fpartner_uid%3D577b985f-e759-48e8-90d1-a2e4520a9a25%253A1663870158.4256022
IP 193.0.160.128:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm?pub=39342&in=0&userid=577b985f-e759-48e8-90d1-a2e4520a9a25%3A1663870158.4256022&forward=https%3A//idsync.rlcdn.com/501709.gif%3Fpartner_uid%3D577b985f-e759-48e8-90d1-a2e4520a9a25%253A1663870158.4256022 HTTP/1.1
Host: p.rfihub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20814341p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Thu, 22 Sep 2022 18:09:18 GMT
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Set-Cookie: euds=H4sIAAAAAAAA_wXByRGAQAgEwI_pYLEjw2E2bImBGLnd3xGM2JV8ZYIllpNS-ixpjBHa1eC93K8MXczTQFfgB6DrzD06AAAA; Path=/; Domain=.rfihub.com; Secure; SameSite=None
eud=H4sIAAAAAAAA_0XIuxGAQAgFwAqMrg4cDnl87IYbsSBDqzV0w32Gw31l4KZ2JGl0UPI1qaQVwpUlOKfZEc4TsavAWOQd259u-QHIMEm8SgAAAA; Path=/; Domain=.rfihub.com; Expires=Tue, 17 Oct 2023 18:09:18 GMT; Secure; SameSite=None
ruds=H4sIAAAAAAAA_-MSNjU0Mja0NDMxMgZSBhZmFpamQnyGuoXFxUnB2WZ-RenFqQBMNnCKJQAAAA; Path=/; Domain=.rfihub.com; Secure; SameSite=None
rud=H4sIAAAAAAAA_-MSNjU0Mja0NDMxMgZSBhZmFpamQnyGuoXFxUnB2WZ-RenFqQBMNnCKJQAAAA; Path=/; Domain=.rfihub.com; Expires=Tue, 17 Oct 2023 18:09:18 GMT; Secure; SameSite=None
Location: https://idsync.rlcdn.com/501709.gif?partner_uid=577b985f-e759-48e8-90d1-a2e4520a9a25%3A1663870158.4256022
Content-Length: 0
Server: Jetty(9.3.29.v20201019)
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 84de1959527177a7525766ae258fcb3b
bba051e291a5467900c286edc27725de1bc941f9
be3f678beb65fc32282e7bb322d0b95730bf5215502b735c5622da0db63827ab
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3929
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 18:09:18 GMT
Last-Modified: Thu, 22 Sep 2022 17:03:49 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
sync-tm.everesttech.net/upi/pid/Mlpt2JaG/?redir=https%3A%2F%2Fp.rfihub.com%2Fcm%3Fin%3D1%26pub%3D21653%26userid%3D%24%7BTM_USER_ID%7D
151.101.86.49503 Service Unavailable 0 B URL HTTP/2 sync-tm.everesttech.net/upi/pid/Mlpt2JaG/?redir=https%3A%2F%2Fp.rfihub.com%2Fcm%3Fin%3D1%26pub%3D21653%26userid%3D%24%7BTM_USER_ID%7D
IP 151.101.86.49:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /upi/pid/Mlpt2JaG/?redir=https%3A%2F%2Fp.rfihub.com%2Fcm%3Fin%3D1%26pub%3D21653%26userid%3D%24%7BTM_USER_ID%7D HTTP/1.1
Host: sync-tm.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20814341p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 503 Service Unavailable
server: Varnish
retry-after: 0
accept-ranges: bytes
date: Thu, 22 Sep 2022 18:09:18 GMT
via: 1.1 varnish
x-served-by: cache-bma1621-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663870159.782130,VS0,VE0
cache-control: no-cache
pragma: no-cache
content-length: 0
X-Firefox-Spdy: h2
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 997b0f9a13990f4997373a969f5fa244
8ec1e0da30d135d6d127381cc1c85c5047ee09a2
0503d1d8a017210f1a5beb96349678b05356d059ed51ff0c08035664b09f1dd0
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4151
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 18:09:18 GMT
Last-Modified: Thu, 22 Sep 2022 17:00:07 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
dpm.demdex.net/ibs:dpid=1121&dpuuid=5123196423319086722&redir=
3.248.73.132302 Found 0 B URL HTTP/1.1 dpm.demdex.net/ibs:dpid=1121&dpuuid=5123196423319086722&redir=
IP 3.248.73.132:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ibs:dpid=1121&dpuuid=5123196423319086722&redir= HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20814341p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
DCS: dcs-prod-irl1-2-v042-055b704b1.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Location: https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=1121&dpuuid=5123196423319086722&redir=
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=70162363677981584680034988824677815002; Max-Age=15552000; Expires=Tue, 21 Mar 2023 18:09:18 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-TID: xB7xKRbUS/I=
Content-Length: 0
Connection: keep-alive
x.dlx.addthis.com/e/rocketfuel_sync?na_exid=5123196423319086722
23.38.201.22200 OK 43 B URL HTTP/2 x.dlx.addthis.com/e/rocketfuel_sync?na_exid=5123196423319086722
IP 23.38.201.22:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /e/rocketfuel_sync?na_exid=5123196423319086722 HTTP/1.1
Host: x.dlx.addthis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20814341p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 43
expires: Thu, 22 Sep 2022 18:09:18 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 22 Sep 2022 18:09:18 GMT
strict-transport-security: max-age=2628000
X-Firefox-Spdy: h2
sync.search.spotxchange.com/partner?adv_id=7180&uid=5123196423319086722&img=1
185.94.180.126302 Found 0 B URL HTTP/1.1 sync.search.spotxchange.com/partner?adv_id=7180&uid=5123196423319086722&img=1
IP 185.94.180.126:0
ASN #35220 SpotXchange, INC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /partner?adv_id=7180&uid=5123196423319086722&img=1 HTTP/1.1
Host: sync.search.spotxchange.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20814341p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Thu, 22 Sep 2022 18:09:18 GMT
Content-Type: text/plain
Content-Length: 0
Connection: keep-alive
Set-Cookie: audience=ad2eb1f1-3aa1-11ed-bc10-1bf9ad920506; expires=Thu, 20-Oct-2022 18:09:18 GMT; path=/; domain=.spotxchange.com; SameSite=none
Location: /partner?adv_id=7180&uid=5123196423319086722&img=1&__user_check__=1&sync_id=ad2eb239-3aa1-11ed-bc10-1bf9ad920506
X-fe: 138
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash 79a85c5dd2f4930d2222d1743d89189c
eeca43da91217b81086c5e2de4f05f5600a2d04c
0a9ff2ac48d872884acc081bf5bc329783fbbf3397b460e6ba5db12827677c66
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6160
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 22 Sep 2022 18:09:18 GMT
Last-Modified: Thu, 22 Sep 2022 16:26:38 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 727
idsync.rlcdn.com/501709.gif?partner_uid=577b985f-e759-48e8-90d1-a2e4520a9a25%3A1663870158.4256022
35.244.174.68307 Temporary Redirect 0 B URL HTTP/2 idsync.rlcdn.com/501709.gif?partner_uid=577b985f-e759-48e8-90d1-a2e4520a9a25%3A1663870158.4256022
IP 35.244.174.68:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /501709.gif?partner_uid=577b985f-e759-48e8-90d1-a2e4520a9a25%3A1663870158.4256022 HTTP/1.1
Host: idsync.rlcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20814341p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 307 Temporary Redirect
cache-control: no-cache, no-store
location: https://idsync.rlcdn.com/1000.gif?memo=CM3PHhJBCj0IARAFGjc1NzdiOTg1Zi1lNzU5LTQ4ZTgtOTBkMS1hMmU0NTIwYTlhMjU6MTY2Mzg3MDE1OC40MjU2MDIyEAAaDQjOybKZBhIFCOgHEABCAEoA
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
set-cookie: pxrc=CAA=; Path=/; Domain=rlcdn.com; Expires=Mon, 21 Nov 2022 18:09:18 GMT; Secure; SameSite=None
timing-allow-origin: *
date: Thu, 22 Sep 2022 18:09:18 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
beacon.krxd.net/usermatch.gif?partner_id=rfuel&partner_user_id=5123196423319086722
18.203.64.12204 No Content 0 B URL HTTP/2 beacon.krxd.net/usermatch.gif?partner_id=rfuel&partner_user_id=5123196423319086722
IP 18.203.64.12:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usermatch.gif?partner_id=rfuel&partner_user_id=5123196423319086722 HTTP/1.1
Host: beacon.krxd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20814341p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 22 Sep 2022 18:09:18 GMT
set-cookie: _kuid_=PGDugCkM; Expires=Tue, 21-Mar-23 18:09:19 GMT; Max-Age=15552000; Domain=.krxd.net; Path=/
cache-control: private, no-cache, no-store
p3p: policyref="https://cdn.krxd.net/kruxcontent/p3p.xml", CP="NON DSP COR NID OUR DEL SAM OTR UNR COM NAV INT DEM CNT STA PRE LOC OTC"
x-served-by: beacon-n014-dub-prod.krxd.net
x-request-time: D=24 t=1663870159
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash fa1168cf5bb7f78b2e4a87f758999e32
bb9ed7c967328db2ff092d902aadf304ed064237
c5ee1d9fc8a876c3052df05b36c89e669f3e1e485fcfe42a0913e2edea53b834
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 22 Sep 2022 18:09:18 GMT
Last-Modified: Thu, 22 Sep 2022 16:35:25 GMT
Server: ECS (bsa/EB20)
X-Cache: Miss from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Lk6An_Y2jkJIiEL2Lta79rhPIBZpOiWJPl_g1I6dwy6QfuOsDGZ-BQ==
Age: 5633
aa.agkn.com/adscores/g.pixel?sid=9212192898&rf=5123196423319086722
54.171.98.27200 OK 43 B URL HTTP/2 aa.agkn.com/adscores/g.pixel?sid=9212192898&rf=5123196423319086722
IP 54.171.98.27:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash db04c7b378cb2db912c3ba8a5a774ee3
dee34bd86c3484d31002182aa2b7caa4699126b8
98b3d9d20e032f90aca49e9b116225d539ff6fbdb7e42c3c363f63896ac03d2a
GET /adscores/g.pixel?sid=9212192898&rf=5123196423319086722 HTTP/1.1
Host: aa.agkn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20814341p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 22 Sep 2022 18:09:18 GMT
content-type: image/gif
content-length: 43
server: AAWebServer
p3p: policyref="https://www.agkn.com/p3p/p3p.xml",CP="NOI NID"
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: accept, cache-control, origin, x-requested-with, x-file-name, content-type
X-Firefox-Spdy: h2
idsync.rlcdn.com/1000.gif?memo=CM3PHhJBCj0IARAFGjc1NzdiOTg1Zi1lNzU5LTQ4ZTgtOTBkMS1hMmU0NTIwYTlhMjU6MTY2Mzg3MDE1OC40MjU2MDIyEAAaDQjOybKZBhIFCOgHEABCAEoA
35.244.174.68307 Temporary Redirect 0 B URL HTTP/2 idsync.rlcdn.com/1000.gif?memo=CM3PHhJBCj0IARAFGjc1NzdiOTg1Zi1lNzU5LTQ4ZTgtOTBkMS1hMmU0NTIwYTlhMjU6MTY2Mzg3MDE1OC40MjU2MDIyEAAaDQjOybKZBhIFCOgHEABCAEoA
IP 35.244.174.68:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1000.gif?memo=CM3PHhJBCj0IARAFGjc1NzdiOTg1Zi1lNzU5LTQ4ZTgtOTBkMS1hMmU0NTIwYTlhMjU6MTY2Mzg3MDE1OC40MjU2MDIyEAAaDQjOybKZBhIFCOgHEABCAEoA HTTP/1.1
Host: idsync.rlcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20814341p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 307 Temporary Redirect
cache-control: no-cache, no-store
location: https://cm.g.doubleclick.net/pixel?google_nid=epsilon&google_cm
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
set-cookie: pxrc=CM7JspkGEgUI6AcQABIGCLrqARAA; Path=/; Domain=rlcdn.com; Expires=Mon, 21 Nov 2022 18:09:18 GMT; Secure; SameSite=None
timing-allow-origin: *
date: Thu, 22 Sep 2022 18:09:18 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
bs.serving-sys.com/serving?cn=um&dpid=12&rtu=https%3A%2F%2Fp.rfihub.com%2Fcm%3Fin%3D1%26pub%3D17945%26userid%3D%5B%25tp_UserID%25%5D
3.123.131.103200 OK 0 B URL HTTP/2 bs.serving-sys.com/serving?cn=um&dpid=12&rtu=https%3A%2F%2Fp.rfihub.com%2Fcm%3Fin%3D1%26pub%3D17945%26userid%3D%5B%25tp_UserID%25%5D
IP 3.123.131.103:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /serving?cn=um&dpid=12&rtu=https%3A%2F%2Fp.rfihub.com%2Fcm%3Fin%3D1%26pub%3D17945%26userid%3D%5B%25tp_UserID%25%5D HTTP/1.1
Host: bs.serving-sys.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20814341p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 22 Sep 2022 18:09:18 GMT
content-length: 0
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="NOI DEVa OUR BUS UNI"
X-Firefox-Spdy: h2
ib.adnxs.com/bounce?%2Fsetuid%3Fentity%3D18%26code%3D5123196423319086722
37.252.173.62200 OK 43 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fsetuid%3Fentity%3D18%26code%3D5123196423319086722
IP 37.252.173.62:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 592ebefc7104d681d57852665e9ad514
15cdf8df32aa251dd6dd590a60bf9cf74474e7c5
4b5b6b15c6255109e06720cce42a06d3aead8b7874423d9c52cb0303212c25ef
GET /bounce?%2Fsetuid%3Fentity%3D18%26code%3D5123196423319086722 HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20814341p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Thu, 22 Sep 2022 18:09:18 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
AN-X-Request-Uuid: be95e4e7-9906-4327-b2b5-9d61bc34641a
Set-Cookie: anj=dTM7k!M4/YErk#WF']wIg2C$Mt%c?v!]tbPl1MNu::wpAk`W=mk`2)oe8nhi+0I<t+b<xT74X(TVkq*^9Rkfl9RrTq.-jH`; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 21-Dec-2022 18:09:18 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 535.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash ef22746354dc8b5189d4e6c76270b510
f8d168a64fa6aef7421e33fccbfa57ec0721c412
9b039b092a421e633ef47389c9213751f5cc1d881df3154b95c808eb9f742249
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 18:09:18 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 13:56:50 GMT
Expires: Tue, 27 Sep 2022 13:56:49 GMT
Etag: "f8d168a64fa6aef7421e33fccbfa57ec0721c412"
Cache-Control: max-age=416250,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74ecfdacba390b06-OSL
lpcdn.lpsnmedia.net/le_secure_storage/3.18.0.0-release_5078/storage.secure.min.js?loc=https%3A%2F%2Fwww.customink.com&site=23156914&force=1&env=prod
178.249.97.98200 OK 15 kB URL HTTP/2 lpcdn.lpsnmedia.net/le_secure_storage/3.18.0.0-release_5078/storage.secure.min.js?loc=https%3A%2F%2Fwww.customink.com&site=23156914&force=1&env=prod
IP 178.249.97.98:0
Hash d1c2661b6ced7bc4780a807bdd07b11e
dae2196a1ac724abc5f3f70d14847d063a246916
a84ea5d01c0f0ad4382e0a0efbfdb944c790f17430b8ba46e012a96a2125cb4c
GET /le_secure_storage/3.18.0.0-release_5078/storage.secure.min.js?loc=https%3A%2F%2Fwww.customink.com&site=23156914&force=1&env=prod HTTP/1.1
Host: lpcdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Sep 2022 18:09:16 GMT
content-type: application/javascript
last-modified: Mon, 08 Aug 2022 03:15:58 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Fri, 22 Sep 2023 18:09:16 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
X-Firefox-Spdy: h2
a.rfihub.com/cm?pub=445&in=0&forward=&google_error=3
193.0.160.128200 OK 42 B URL HTTP/1.1 a.rfihub.com/cm?pub=445&in=0&forward=&google_error=3
IP 193.0.160.128:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash accba0b69f352b4c9440f05891b015c5
9d01cc5dc8e042c0d4ad6cfb8b3ac38e84a5ef9f
47043e4823a6c21a8881de789b4185355330b5804629d23f6b43dd93f5265292
GET /cm?pub=445&in=0&forward=&google_error=3 HTTP/1.1
Host: a.rfihub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20814341p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 18:09:18 GMT
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Set-Cookie: ruds=H4sIAAAAAAAA_-MSNjU0MDcxNrYwMjEzBGJjC0szIT5DXfd8U89yx5zMIvcUEwAQKUn-JQAAAA; Path=/; Domain=.rfihub.com; Secure; SameSite=None
euds=H4sIAAAAAAAA_-NicjUGAEAxo38EAAAA; Path=/; Domain=.rfihub.com; Secure; SameSite=None
eud=H4sIAAAAAAAA_-NicjUO4jU0MzO2MDcwNLWwMDcFAFCFwu0TAAAA; Path=/; Domain=.rfihub.com; Expires=Tue, 17 Oct 2023 18:09:18 GMT; Secure; SameSite=None
rud=H4sIAAAAAAAA_-MSNjU0MDcxNrYwMjEzBGJjC0szIT5DXfd8U89yx5zMIvcUEwAQKUn-JQAAAA; Path=/; Domain=.rfihub.com; Expires=Tue, 17 Oct 2023 18:09:18 GMT; Secure; SameSite=None
Cache-Control: no-cache
Content-Type: image/gif
Content-Length: 42
Server: Jetty(9.3.29.v20201019)
dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=1121&dpuuid=5123196423319086722&redir=
3.248.73.132200 OK 59 B URL HTTP/1.1 dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=1121&dpuuid=5123196423319086722&redir=
IP 3.248.73.132:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 1251cd5e5c2def4c046309375f87c1c1
e02d6b0c6a5c495c15985e2832e335eda8528c80
4e7010cc46fa361c88e57e3346d27421cf3b8a8bf5f39b43fc45997c60cb1c13
GET /demconf.jpg?et:ibs%7cdata:dpid=1121&dpuuid=5123196423319086722&redir= HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20814341p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: image/gif
DCS: dcs-prod-irl1-2-v042-0858e97e5.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-TID: 8TqnzZBtTKw=
Content-Length: 59
Connection: keep-alive
ocsp.usertrust.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 5206b78759fabe72774270f31d67d957
60fa5106620042c1a8ab74b1909f416df1381dbb
53feba3af85487a91bf1b13afed1faef280c9b340414dce620b244ea3c01a236
POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 18:09:18 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 21 Sep 2022 09:01:01 GMT
Expires: Wed, 28 Sep 2022 09:01:00 GMT
Etag: "60fa5106620042c1a8ab74b1909f416df1381dbb"
Cache-Control: max-age=602213,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 1085
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74ecfdad0cfdb529-OSL
sync.search.spotxchange.com/partner?adv_id=7180&uid=5123196423319086722&img=1&__user_check__=1&sync_id=ad2eb239-3aa1-11ed-bc10-1bf9ad920506
185.94.180.126200 OK 43 B URL HTTP/1.1 sync.search.spotxchange.com/partner?adv_id=7180&uid=5123196423319086722&img=1&__user_check__=1&sync_id=ad2eb239-3aa1-11ed-bc10-1bf9ad920506
IP 185.94.180.126:0
ASN #35220 SpotXchange, INC
File type GIF image data, version 89a, 1 x 1\012- data
Hash 55fade2068e7503eae8d7ddf5eb6bd09
317496a096d6c86486a71d4521994bcd171a6bb3
e586a84d8523747f42e510d78e141015b6424cf67d612854e892a7bcedc8ec9e
GET /partner?adv_id=7180&uid=5123196423319086722&img=1&__user_check__=1&sync_id=ad2eb239-3aa1-11ed-bc10-1bf9ad920506 HTTP/1.1
Host: sync.search.spotxchange.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20814341p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 18:09:18 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Set-Cookie: audience=ad3ad2db-3aa1-11ed-b2ef-11e121d60106; expires=Thu, 20-Oct-2022 18:09:18 GMT; path=/; domain=.spotxchange.com
x-spotx-halt-type: Audience DSP sync endpoint was unable to cookie the audience.
X-fe: 8
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash a3b00c4674ee0386430e963a8ca3a040
f2cb59ace17ff9d8c7273a3f5d76887700f457a0
17d6cf90b88f4e2897173116ca300b3dbd613af3aca9bfcdbf69adbb3883aa38
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 18:09:18 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 21 Sep 2022 13:42:56 GMT
Expires: Wed, 28 Sep 2022 13:42:55 GMT
Etag: "f2cb59ace17ff9d8c7273a3f5d76887700f457a0"
Cache-Control: max-age=501816,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74ecfdacdc8d0b51-OSL
x.bidswitch.net/sync?dsp_id=119&user_id=5123196423319086722&expires=30
35.156.45.124302 Moved Temporarily 0 B URL HTTP/1.1 x.bidswitch.net/sync?dsp_id=119&user_id=5123196423319086722&expires=30
IP 35.156.45.124:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?dsp_id=119&user_id=5123196423319086722&expires=30 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20814341p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Thu, 22 Sep 2022 18:09:18 GMT
Location: https://x.bidswitch.net/ul_cb/sync?dsp_id=119&user_id=5123196423319086722&expires=30
Set-Cookie: tuuid=384859d3-3eb8-42c9-92e1-70cd498a01b6; path=/; expires=Fri, 22-Sep-2023 18:09:18 GMT; domain=.bidswitch.net; samesite=none; secure
c=1663870158; path=/; expires=Fri, 22-Sep-2023 18:09:18 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1663870158; path=/; expires=Fri, 22-Sep-2023 18:09:18 GMT; domain=.bidswitch.net; samesite=none; secure
c=1663870158; path=/; expires=Fri, 22-Sep-2023 18:09:18 GMT; domain=.bidswitch.net; samesite=none; secure
Content-Length: 0
Connection: keep-alive
lpcdn.lpsnmedia.net/le_unified_window/10.20.1.9-release_5536/UMSClientAPI.min.js?version=10.20.1.9-release_5536
178.249.97.98200 OK 30 kB URL HTTP/2 lpcdn.lpsnmedia.net/le_unified_window/10.20.1.9-release_5536/UMSClientAPI.min.js?version=10.20.1.9-release_5536
IP 178.249.97.98:0
File type ASCII text, with very long lines (32003)
Hash befb347da25fe637c8445f45be42315d
6b81f86df41a44dc3fca13a75aa27383b59e5249
742aa454ef95535912e157bb1991dd23474191a9fae856ac0f7bc33c8de8c724
GET /le_unified_window/10.20.1.9-release_5536/UMSClientAPI.min.js?version=10.20.1.9-release_5536 HTTP/1.1
Host: lpcdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 22 Sep 2022 18:09:15 GMT
content-type: application/javascript
last-modified: Wed, 31 Aug 2022 14:50:34 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Fri, 22 Sep 2023 18:09:15 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
X-Firefox-Spdy: h2
x.bidswitch.net/ul_cb/sync?dsp_id=119&user_id=5123196423319086722&expires=30
35.156.45.124200 OK 43 B URL HTTP/1.1 x.bidswitch.net/ul_cb/sync?dsp_id=119&user_id=5123196423319086722&expires=30
IP 35.156.45.124:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/sync?dsp_id=119&user_id=5123196423319086722&expires=30 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20814341p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store, must-revalidate
Content-Type: image/gif
Date: Thu, 22 Sep 2022 18:09:18 GMT
Content-Length: 43
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash ecd0046b252eb06ba565b6bb14b50e95
b76974e5182d7394faadebba860dfa6c1e7eebef
64dd563b78aa627fd9029968202e15d87b61150533580a6e14ec1c6ca560c11d
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 22 Sep 2022 18:09:19 GMT
Last-Modified: Thu, 22 Sep 2022 16:33:50 GMT
Server: ECS (bsa/EB1D)
X-Cache: Miss from cloudfront
Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: cnigpyU7jX5Op5cPt6caNOVODPwoUW2Fr561UhbVIu7M4PLm0MgEnA==
Age: 5729
20814341p.rfihub.com/ca.html?ver=9&rb=38276&ca=20814341&_o=38276&_t=20814341&pe=https%3A%2F%2Fwww.customink.com%2Fink%2Fi18nco%3Fcc%3DNO&pf=https%3A%2F%2Fwww.customink.com%2F&ra=10380240794756823
193.0.160.128200 OK 2.6 kB URL HTTP/1.1 20814341p.rfihub.com/ca.html?ver=9&rb=38276&ca=20814341&_o=38276&_t=20814341&pe=https%3A%2F%2Fwww.customink.com%2Fink%2Fi18nco%3Fcc%3DNO&pf=https%3A%2F%2Fwww.customink.com%2F&ra=10380240794756823
IP 193.0.160.128:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (2613), with no line terminators
Hash 701076f926b0805cdd20d9b0e6a74857
bf7c8961a453d4ccb96d78d4d0287ef232be9c49
c0a0ff7861309f8b3da8bd173cf2df919da2d2656c4dadb70e1edf57b3091ba9
GET /ca.html?ver=9&rb=38276&ca=20814341&_o=38276&_t=20814341&pe=https%3A%2F%2Fwww.customink.com%2Fink%2Fi18nco%3Fcc%3DNO&pf=https%3A%2F%2Fwww.customink.com%2F&ra=10380240794756823 HTTP/1.1
Host: 20814341p.rfihub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 18:09:19 GMT
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Set-Cookie: ruds=H4sIAAAAAAAA_-MSNjU0MDcxNrYwMjEzBGJjS2MDIT5D3QLjooIA9yxfy1xjMwDuo7tgJQAAAA; Path=/; Domain=.rfihub.com; Secure; SameSite=None
eud=H4sIAAAAAAAA_5vFyGtoZmZsYW5gaGppYGmxCo1_Co3_Co3_C40_iQmVPwuNvwiNvwqNvwmNvwtdPQsq_xYafxMrmn5uNPei8RcJo_IfofEBb9jtQyABAAA; Path=/; Domain=.rfihub.com; Expires=Tue, 17 Oct 2023 18:09:19 GMT; Secure; SameSite=None
rud=H4sIAAAAAAAA_-MSNjU0MDcxNrYwMjEzBGJjS2MDIT5D3QLjooIA9yxfy1xjMwDuo7tgJQAAAA; Path=/; Domain=.rfihub.com; Expires=Tue, 17 Oct 2023 18:09:19 GMT; Secure; SameSite=None
Cache-Control: no-cache
Content-Type: text/html;charset=utf-8
Content-Length: 2613
Server: Jetty(9.3.29.v20201019)
ib.adnxs.com/setuid?entity=18&code=5107433824612463930
37.252.173.62307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/setuid?entity=18&code=5107433824612463930
IP 37.252.173.62:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /setuid?entity=18&code=5107433824612463930 HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20814341p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Thu, 22 Sep 2022 18:09:19 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Location: https://ib.adnxs.com/bounce?%2Fsetuid%3Fentity%3D18%26code%3D5107433824612463930
AN-X-Request-Uuid: 97a43de1-5b2e-4c98-960e-a39d076ba137
Set-Cookie: uuid2=3660689181625203506; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 21-Dec-2022 18:09:19 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 535.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
pxl.qccerttest.com/pixel?r=957577333;fpan=0;fpa=P0-2121874639-1663870157569;pbc=;ns=1;ce=1;qjs=1;qv=d18171e5-20220913105912;ref=https%3A%2F%2Fwww.customink.com%2F;cm=;gdpr=0;d=customink.com;dst=0;et=1663870158695;tzo=0;url=https%3A%2F%2Fwww.customink.com%2Fink%2Fi18nco%3Fcc%3DNO;ogl=
143.204.55.21200 OK 35 B URL HTTP/2 pxl.qccerttest.com/pixel?r=957577333;fpan=0;fpa=P0-2121874639-1663870157569;pbc=;ns=1;ce=1;qjs=1;qv=d18171e5-20220913105912;ref=https%3A%2F%2Fwww.customink.com%2F;cm=;gdpr=0;d=customink.com;dst=0;et=1663870158695;tzo=0;url=https%3A%2F%2Fwww.customink.com%2Fink%2Fi18nco%3Fcc%3DNO;ogl=
IP 143.204.55.21:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 55d25e9dc950d5db4d53a3b195c046c6
75e91ae3e549dab12ed1c9787ade9131aef1c981
a0d3a0aff7dc3bf32d2176fc3dcda6e7aba2867c4f4d1f7af6355d2cfc6c44f8
GET /pixel?r=957577333;fpan=0;fpa=P0-2121874639-1663870157569;pbc=;ns=1;ce=1;qjs=1;qv=d18171e5-20220913105912;ref=https%3A%2F%2Fwww.customink.com%2F;cm=;gdpr=0;d=customink.com;dst=0;et=1663870158695;tzo=0;url=https%3A%2F%2Fwww.customink.com%2Fink%2Fi18nco%3Fcc%3DNO;ogl= HTTP/1.1
Host: pxl.qccerttest.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 35
last-modified: Thu, 04 Aug 2022 16:01:04 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Thu, 22 Sep 2022 01:48:50 GMT
etag: "55d25e9dc950d5db4d53a3b195c046c6"
x-cache: Hit from cloudfront
via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: dDDtb8uNSpVFU9uNMVjWhrnC51gdu5amBCMH5-ypUddXinzwFl0CBg==
age: 58830
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
bpi.rtactivate.com/tag/?id=11017&user_id=5107433824612463930
34.204.34.148200 OK 43 B URL HTTP/2 bpi.rtactivate.com/tag/?id=11017&user_id=5107433824612463930
IP 34.204.34.148:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /tag/?id=11017&user_id=5107433824612463930 HTTP/1.1
Host: bpi.rtactivate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20814341p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: awselb/2.0
date: Thu, 22 Sep 2022 18:09:19 GMT
content-type: image/gif
content-length: 43
X-Firefox-Spdy: h2
pixel.quantserve.com/pixel;r=1216045000;labels=_fp.event.Default;rf=0;a=p-BUjach_RzVDf0;url=https%3A%2F%2Fwww.customink.com%2Fink%2Fi18nco%3Fcc%3DNO;ref=https%3A%2F%2Fwww.customink.com%2F;uht=2;fpan=0;fpa=P0-2121874639-1663870157569;pbc=;ns=1;ce=1;qjs=1;qv=d18171e5-20220913105912;cm=;gdpr=0;d=customink.com;dst=0;et=1663870158697;tzo=0;ogl=;sxl=1;sxc=1;ses=ad511719-144a-4ec3-a9af-eeb5314d01dd
91.228.74.168200 OK 35 B URL HTTP/2 pixel.quantserve.com/pixel;r=1216045000;labels=_fp.event.Default;rf=0;a=p-BUjach_RzVDf0;url=https%3A%2F%2Fwww.customink.com%2Fink%2Fi18nco%3Fcc%3DNO;ref=https%3A%2F%2Fwww.customink.com%2F;uht=2;fpan=0;fpa=P0-2121874639-1663870157569;pbc=;ns=1;ce=1;qjs=1;qv=d18171e5-20220913105912;cm=;gdpr=0;d=customink.com;dst=0;et=1663870158697;tzo=0;ogl=;sxl=1;sxc=1;ses=ad511719-144a-4ec3-a9af-eeb5314d01dd
IP 91.228.74.168:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 55d25e9dc950d5db4d53a3b195c046c6
75e91ae3e549dab12ed1c9787ade9131aef1c981
a0d3a0aff7dc3bf32d2176fc3dcda6e7aba2867c4f4d1f7af6355d2cfc6c44f8
GET /pixel;r=1216045000;labels=_fp.event.Default;rf=0;a=p-BUjach_RzVDf0;url=https%3A%2F%2Fwww.customink.com%2Fink%2Fi18nco%3Fcc%3DNO;ref=https%3A%2F%2Fwww.customink.com%2F;uht=2;fpan=0;fpa=P0-2121874639-1663870157569;pbc=;ns=1;ce=1;qjs=1;qv=d18171e5-20220913105912;cm=;gdpr=0;d=customink.com;dst=0;et=1663870158697;tzo=0;ogl=;sxl=1;sxc=1;ses=ad511719-144a-4ec3-a9af-eeb5314d01dd HTTP/1.1
Host: pixel.quantserve.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Sep 2022 18:09:19 GMT
content-type: image/gif
content-length: 35
cache-control: private, no-cache, no-store, proxy-revalidate
expires: Fri, 04 Aug 1978 12:00:00 GMT
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAo PSDo OUR SAMa IND COM NAV"
pragma: no-cache
set-cookie: mc=632ca4cf-4a47c-1778a-ae067; expires=Mon, 23-Oct-2023 18:09:19 GMT; path=/; domain=.quantserve.com
X-Firefox-Spdy: h2
sync-tm.everesttech.net/upi/pid/Mlpt2JaG/?redir=https%3A%2F%2Fp.rfihub.com%2Fcm%3Fin%3D1%26pub%3D21653%26userid%3D%24%7BTM_USER_ID%7D
151.101.86.49503 Service Unavailable 0 B URL HTTP/2 sync-tm.everesttech.net/upi/pid/Mlpt2JaG/?redir=https%3A%2F%2Fp.rfihub.com%2Fcm%3Fin%3D1%26pub%3D21653%26userid%3D%24%7BTM_USER_ID%7D
IP 151.101.86.49:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /upi/pid/Mlpt2JaG/?redir=https%3A%2F%2Fp.rfihub.com%2Fcm%3Fin%3D1%26pub%3D21653%26userid%3D%24%7BTM_USER_ID%7D HTTP/1.1
Host: sync-tm.everesttech.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20814341p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 503 Service Unavailable
server: Varnish
retry-after: 0
accept-ranges: bytes
date: Thu, 22 Sep 2022 18:09:19 GMT
via: 1.1 varnish
x-served-by: cache-bma1621-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663870159.371813,VS0,VE0
cache-control: no-cache
pragma: no-cache
content-length: 0
X-Firefox-Spdy: h2
contextual.media.net/cksync.php?cs=3&type=rkt&ovsid=5107433824612463930
23.38.200.22200 OK 45 B URL HTTP/2 contextual.media.net/cksync.php?cs=3&type=rkt&ovsid=5107433824612463930
IP 23.38.200.22:0
File type GIF image data, version 87a, 1 x 1\012- data
Hash 99cceceaed4d575484b69ddaf9ed66a7
1e3a3b15296b585833a22d987a387aa58aa1642d
832f63f4187160c195b04f1911c2e623a75e805f4b23abb9b0bea214b4283a43
GET /cksync.php?cs=3&type=rkt&ovsid=5107433824612463930 HTTP/1.1
Host: contextual.media.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20814341p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Apache
content-length: 45
content-type: image/gif
set-cookie: visitor-id=3068717593580262000V10; Expires=Fri, 22 Sep 2023 18:09:19 GMT; domain=.media.net; Path=/;
data-rk=5107433824612463930~~3;Expires=Thu, 21 Sep 2023 18:09:19 GMT;path=/;domain=.media.net;
p3p: CP="NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA", CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA, CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA
strict-transport-security: max-age=31536000
x-mnet-hl2: E
expires: Thu, 22 Sep 2022 18:09:19 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 22 Sep 2022 18:09:19 GMT
X-Firefox-Spdy: h2
sync.search.spotxchange.com/partner?adv_id=7180&uid=5107433824612463930&img=1
185.94.180.126302 Found 0 B URL HTTP/1.1 sync.search.spotxchange.com/partner?adv_id=7180&uid=5107433824612463930&img=1
IP 185.94.180.126:0
ASN #35220 SpotXchange, INC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /partner?adv_id=7180&uid=5107433824612463930&img=1 HTTP/1.1
Host: sync.search.spotxchange.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20814341p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Thu, 22 Sep 2022 18:09:19 GMT
Content-Type: text/plain
Content-Length: 0
Connection: keep-alive
Set-Cookie: audience=ad862d9a-3aa1-11ed-8824-1ac857eb0106; expires=Thu, 20-Oct-2022 18:09:19 GMT; path=/; domain=.spotxchange.com; SameSite=none
Location: /partner?adv_id=7180&uid=5107433824612463930&img=1&__user_check__=1&sync_id=ad862de8-3aa1-11ed-8824-1ac857eb0106
X-fe: 72
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
partners.tremorhub.com/sync?UIRF=5123196423319086722&r=hhZKM6PLImWh
3.227.90.123200 OK 43 B URL HTTP/2 partners.tremorhub.com/sync?UIRF=5123196423319086722&r=hhZKM6PLImWh
IP 3.227.90.123:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /sync?UIRF=5123196423319086722&r=hhZKM6PLImWh HTTP/1.1
Host: partners.tremorhub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20814341p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 22 Sep 2022 18:09:19 GMT
content-type: image/gif
server: Apache-Coyote/1.1
p3p: CP='This is not a P3P policy. See https://telaria.com/privacy-policy/'
X-Firefox-Spdy: h2
bs.serving-sys.com/serving?cn=um&dpid=12&rtu=https%3A%2F%2Fp.rfihub.com%2Fcm%3Fin%3D1%26pub%3D17945%26userid%3D%5B%25tp_UserID%25%5D
3.123.131.103200 OK 0 B URL HTTP/2 bs.serving-sys.com/serving?cn=um&dpid=12&rtu=https%3A%2F%2Fp.rfihub.com%2Fcm%3Fin%3D1%26pub%3D17945%26userid%3D%5B%25tp_UserID%25%5D
IP 3.123.131.103:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /serving?cn=um&dpid=12&rtu=https%3A%2F%2Fp.rfihub.com%2Fcm%3Fin%3D1%26pub%3D17945%26userid%3D%5B%25tp_UserID%25%5D HTTP/1.1
Host: bs.serving-sys.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20814341p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Sep 2022 18:09:19 GMT
content-length: 0
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="NOI DEVa OUR BUS UNI"
X-Firefox-Spdy: h2
x.bidswitch.net/sync?dsp_id=119&user_id=5107433824612463930&expires=30
35.156.45.124200 OK 43 B URL HTTP/1.1 x.bidswitch.net/sync?dsp_id=119&user_id=5107433824612463930&expires=30
IP 35.156.45.124:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /sync?dsp_id=119&user_id=5107433824612463930&expires=30 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20814341p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store, must-revalidate
Content-Type: image/gif
Date: Thu, 22 Sep 2022 18:09:19 GMT
Content-Length: 43
Connection: keep-alive
p.rfihub.com/cm?pub=24472&in=1
193.0.160.128302 Found 0 B URL HTTP/1.1 p.rfihub.com/cm?pub=24472&in=1
IP 193.0.160.128:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm?pub=24472&in=1 HTTP/1.1
Host: p.rfihub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20814341p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 302 Found
Date: Thu, 22 Sep 2022 18:09:19 GMT
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Set-Cookie: eud=H4sIAAAAAAAA_7vFwmtoZmZsYW5gaGppbGEMAPaR7sQQAAAA; Path=/; Domain=.rfihub.com; Expires=Tue, 17 Oct 2023 18:09:19 GMT; Secure; SameSite=None
ruds=H4sIAAAAAAAA_-MSNjU0sDSzMDUzMjE2tTQyNjM2MhTiM9StSiv2Ng7KS_Ew8isGAGiioQYlAAAA; Path=/; Domain=.rfihub.com; Secure; SameSite=None
rud=H4sIAAAAAAAA_-MSNjU0sDSzMDUzMjE2tTQyNjM2MhTiM9StSiv2Ng7KS_Ew8isGAGiioQYlAAAA; Path=/; Domain=.rfihub.com; Expires=Tue, 17 Oct 2023 18:09:19 GMT; Secure; SameSite=None
Location: https://ps.eyeota.net/match?uid=5109685624359236321&bid=omt9pi0
Content-Length: 0
Server: Jetty(9.3.29.v20201019)
ib.adnxs.com/bounce?%2Fsetuid%3Fentity%3D18%26code%3D5107433824612463930
37.252.173.62200 OK 43 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fsetuid%3Fentity%3D18%26code%3D5107433824612463930
IP 37.252.173.62:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 592ebefc7104d681d57852665e9ad514
15cdf8df32aa251dd6dd590a60bf9cf74474e7c5
4b5b6b15c6255109e06720cce42a06d3aead8b7874423d9c52cb0303212c25ef
GET /bounce?%2Fsetuid%3Fentity%3D18%26code%3D5107433824612463930 HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20814341p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Thu, 22 Sep 2022 18:09:19 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
AN-X-Request-Uuid: 31a1e0bb-3850-4ac0-bc18-a4b75a924c2b
Set-Cookie: anj=dTM7k!M4/YErk#WF']wIg2C$Ut%c?v!]tbPl1MNu::wpAk`W=elw1oydX=`B(?_?yRAC%=XE5<j=sJSA.gLHHXs6>J.A'Pc; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 21-Dec-2022 18:09:19 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 535.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
dpm.demdex.net/ibs:dpid=1121&dpuuid=5107433824612463930&redir=
3.248.73.132302 Found 0 B URL HTTP/1.1 dpm.demdex.net/ibs:dpid=1121&dpuuid=5107433824612463930&redir=
IP 3.248.73.132:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ibs:dpid=1121&dpuuid=5107433824612463930&redir= HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20814341p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
DCS: dcs-prod-irl1-1-v042-0b232460b.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Location: https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=1121&dpuuid=5107433824612463930&redir=
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=21566384863280690992669619960615181758; Max-Age=15552000; Expires=Tue, 21 Mar 2023 18:09:19 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-TID: +Mi5l1MnRjk=
Content-Length: 0
Connection: keep-alive
aa.agkn.com/adscores/g.pixel?sid=9212192898&rf=5107433824612463930
54.171.98.27200 OK 43 B URL HTTP/2 aa.agkn.com/adscores/g.pixel?sid=9212192898&rf=5107433824612463930
IP 54.171.98.27:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash db04c7b378cb2db912c3ba8a5a774ee3
dee34bd86c3484d31002182aa2b7caa4699126b8
98b3d9d20e032f90aca49e9b116225d539ff6fbdb7e42c3c363f63896ac03d2a
GET /adscores/g.pixel?sid=9212192898&rf=5107433824612463930 HTTP/1.1
Host: aa.agkn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20814341p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Sep 2022 18:09:19 GMT
content-type: image/gif
content-length: 43
server: AAWebServer
p3p: policyref="https://www.agkn.com/p3p/p3p.xml",CP="NOI NID"
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: accept, cache-control, origin, x-requested-with, x-file-name, content-type
X-Firefox-Spdy: h2
beacon.krxd.net/usermatch.gif?partner_id=rfuel&partner_user_id=5107433824612463930
18.203.64.12204 No Content 0 B URL HTTP/2 beacon.krxd.net/usermatch.gif?partner_id=rfuel&partner_user_id=5107433824612463930
IP 18.203.64.12:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usermatch.gif?partner_id=rfuel&partner_user_id=5107433824612463930 HTTP/1.1
Host: beacon.krxd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20814341p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Thu, 22 Sep 2022 18:09:19 GMT
set-cookie: _kuid_=PGDugLEC; Expires=Tue, 21-Mar-23 18:09:19 GMT; Max-Age=15552000; Domain=.krxd.net; Path=/
cache-control: private, no-cache, no-store
p3p: policyref="https://cdn.krxd.net/kruxcontent/p3p.xml", CP="NON DSP COR NID OUR DEL SAM OTR UNR COM NAV INT DEM CNT STA PRE LOC OTC"
x-served-by: beacon-n009-dub-prod.krxd.net
x-request-time: D=40 t=1663870159
X-Firefox-Spdy: h2
sync.search.spotxchange.com/partner?adv_id=7180&uid=5107433824612463930&img=1&__user_check__=1&sync_id=ad862de8-3aa1-11ed-8824-1ac857eb0106
185.94.180.126200 OK 43 B URL HTTP/1.1 sync.search.spotxchange.com/partner?adv_id=7180&uid=5107433824612463930&img=1&__user_check__=1&sync_id=ad862de8-3aa1-11ed-8824-1ac857eb0106
IP 185.94.180.126:0
ASN #35220 SpotXchange, INC
File type GIF image data, version 89a, 1 x 1\012- data
Hash 55fade2068e7503eae8d7ddf5eb6bd09
317496a096d6c86486a71d4521994bcd171a6bb3
e586a84d8523747f42e510d78e141015b6424cf67d612854e892a7bcedc8ec9e
GET /partner?adv_id=7180&uid=5107433824612463930&img=1&__user_check__=1&sync_id=ad862de8-3aa1-11ed-8824-1ac857eb0106 HTTP/1.1
Host: sync.search.spotxchange.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20814341p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 22 Sep 2022 18:09:19 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Set-Cookie: audience=ad8aa22f-3aa1-11ed-b63a-162d46060206; expires=Thu, 20-Oct-2022 18:09:19 GMT; path=/; domain=.spotxchange.com
x-spotx-halt-type: Audience DSP sync endpoint was unable to cookie the audience.
X-fe: 16
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
ps.eyeota.net/match?uid=5109685624359236321&bid=omt9pi0
3.120.214.218200 OK 0 B URL HTTP/1.1 ps.eyeota.net/match?uid=5109685624359236321&bid=omt9pi0
IP 3.120.214.218:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?uid=5109685624359236321&bid=omt9pi0 HTTP/1.1
Host: ps.eyeota.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20814341p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Set-Cookie: SERVERID=17233~DM; Domain=eyeota.net; Path=/; Expires=Thu, 22 Sep 2022 18:19:19 GMT; Secure; SameSite=None;
P3P: CP="CURa ADMa DEVa TAIo PSAo PSDo OUR SAMo BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR", policyref="http://ps.eyeota.net/w3c/p3p.xml"
Content-Length: 0
Date: Thu, 22 Sep 2022 18:09:19 GMT
dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=1121&dpuuid=5107433824612463930&redir=
3.248.73.132200 OK 59 B URL HTTP/1.1 dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=1121&dpuuid=5107433824612463930&redir=
IP 3.248.73.132:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 1251cd5e5c2def4c046309375f87c1c1
e02d6b0c6a5c495c15985e2832e335eda8528c80
4e7010cc46fa361c88e57e3346d27421cf3b8a8bf5f39b43fc45997c60cb1c13
GET /demconf.jpg?et:ibs%7cdata:dpid=1121&dpuuid=5107433824612463930&redir= HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20814341p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: image/gif
DCS: dcs-prod-irl1-2-v042-00135db9e.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-TID: zkcOK64ISMQ=
Content-Length: 59
Connection: keep-alive
a.rfihub.com/cm?pub=445&in=0&forward=&google_error=3
193.0.160.128200 OK 42 B URL HTTP/1.1 a.rfihub.com/cm?pub=445&in=0&forward=&google_error=3
IP 193.0.160.128:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash accba0b69f352b4c9440f05891b015c5
9d01cc5dc8e042c0d4ad6cfb8b3ac38e84a5ef9f
47043e4823a6c21a8881de789b4185355330b5804629d23f6b43dd93f5265292
GET /cm?pub=445&in=0&forward=&google_error=3 HTTP/1.1
Host: a.rfihub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20814341p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 22 Sep 2022 18:09:19 GMT
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Set-Cookie: ruds=H4sIAAAAAAAA_-MSNjU0MTQyNLAwMjQ3NTE1sjQxMRbiM9RNTPaNMjJ1TEw0D0oGAMLqANslAAAA; Path=/; Domain=.rfihub.com; Secure; SameSite=None
eud=H4sIAAAAAAAA_-NicjUO4jU0MzO2MDcwNLU0MbIEAD-jpSgTAAAA; Path=/; Domain=.rfihub.com; Expires=Tue, 17 Oct 2023 18:09:19 GMT; Secure; SameSite=None
euds=H4sIAAAAAAAA_-NicjUGAEAxo38EAAAA; Path=/; Domain=.rfihub.com; Secure; SameSite=None
rud=H4sIAAAAAAAA_-MSNjU0MTQyNLAwMjQ3NTE1sjQxMRbiM9RNTPaNMjJ1TEw0D0oGAMLqANslAAAA; Path=/; Domain=.rfihub.com; Expires=Tue, 17 Oct 2023 18:09:19 GMT; Secure; SameSite=None
Cache-Control: no-cache
Content-Type: image/gif
Content-Length: 42
Server: Jetty(9.3.29.v20201019)
live.rezync.com/pixel?c=bd8618c307ae9885a12561b7191e2cea&cid=5107433824612463930&referrer=https%3A%2F%2Fwww.customink.com%2F
143.204.55.106302 Found 661 B URL HTTP/2 live.rezync.com/pixel?c=bd8618c307ae9885a12561b7191e2cea&cid=5107433824612463930&referrer=https%3A%2F%2Fwww.customink.com%2F
IP 143.204.55.106:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (575)
Hash 30edf630850c03c2133eb58f39c31d06
9176a681daf91c35eaff48b59b49b656409276a7
7d1f07d98fa32870b9df23160d1f228402dbaaf7ca8dd2a0352683a57adc23b2
GET /pixel?c=bd8618c307ae9885a12561b7191e2cea&cid=5107433824612463930&referrer=https%3A%2F%2Fwww.customink.com%2F HTTP/1.1
Host: live.rezync.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20814341p.rfihub.com/
Cookie: zync-uuid=577b985f-e759-48e8-90d1-a2e4520a9a25:1663870158.4256022; sd-session-id=.eJwVjEEOgyAQAP-yZzGwsLDwGUPrmpBW2rj2UtO_V0-TSSZzwPSWba1d-g5l3z4ywP3ZTlMoB2j7rvKAAuTQuxwD-hOWY0KE3wAqqu3VpzZfTUq3zLQYSZRNYGGT7exMRQmEtuaKVFyMnpN1xGNAivb6_AGcaSUW.Yyykzg.nRKGu9GIByd0nvO1IwJ5FS6Nunk
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
content-type: text/html; charset=utf-8
content-length: 661
location: https://p.rfihub.com/cm?pub=39342&in=0&userid=577b985f-e759-48e8-90d1-a2e4520a9a25%3A1663870158.4256022&forward=https%3A//idsync.rlcdn.com/501709.gif%3Fpartner_uid%3D577b985f-e759-48e8-90d1-a2e4520a9a25%253A1663870158.4256022
date: Thu, 22 Sep 2022 18:09:19 GMT
set-cookie: zync-uuid=577b985f-e759-48e8-90d1-a2e4520a9a25:1663870158.4256022; Domain=rezync.com; Expires=Tue, 21 Mar 2023 11:09:19 GMT; Path=/; SameSite=None; Secure
sd-session-id=.eJwVykEOgyAQQNG7zFqaYWBg4DKG1jEhrbQRu6nx7trFX7zk7zB-dF1K07ZB3tavDvB41Usd8g69_hZ9Qga2GL1zQj7YK5ccwjFA197ru411-j8x3pPwbDRyMl5UTMLJmkLqmbCkQpxtCE4iWpabJw5IBMcJm4clEw.Yyykzw.XcaQae22zTxlsbafTnCOY1ThRdQ; Expires=Tue, 21 Mar 2023 18:09:19 GMT; HttpOnly; Path=/; SameSite=None; Secure
vary: Cookie
server: lighttpd/1.4.59
x-cache: Miss from cloudfront
via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 0NadU-kcVZH7-zrDFVNuX6EyiyIJebZW4S_8FByXCH4DR9Uqq4HW2A==
X-Firefox-Spdy: h2
p.rfihub.com/cm?pub=39342&in=0&userid=577b985f-e759-48e8-90d1-a2e4520a9a25%3A1663870158.4256022&forward=https%3A//idsync.rlcdn.com/501709.gif%3Fpartner_uid%3D577b985f-e759-48e8-90d1-a2e4520a9a25%253A1663870158.4256022
193.0.160.128302 Found 0 B URL HTTP/1.1 p.rfihub.com/cm?pub=39342&in=0&userid=577b985f-e759-48e8-90d1-a2e4520a9a25%3A1663870158.4256022&forward=https%3A//idsync.rlcdn.com/501709.gif%3Fpartner_uid%3D577b985f-e759-48e8-90d1-a2e4520a9a25%253A1663870158.4256022
IP 193.0.160.128:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm?pub=39342&in=0&userid=577b985f-e759-48e8-90d1-a2e4520a9a25%3A1663870158.4256022&forward=https%3A//idsync.rlcdn.com/501709.gif%3Fpartner_uid%3D577b985f-e759-48e8-90d1-a2e4520a9a25%253A1663870158.4256022 HTTP/1.1
Host: p.rfihub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20814341p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Thu, 22 Sep 2022 18:09:19 GMT
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Set-Cookie: euds=H4sIAAAAAAAA_wXByRGAQAgEwI_pYLEjw2E2bImBGLnd3xGM2JV8ZYIllpNS-ixpjBHa1eC93K8MXczTQFfgB6DrzD06AAAA; Path=/; Domain=.rfihub.com; Secure; SameSite=None
eud=H4sIAAAAAAAA_z3IuxGAQAgFwAqMrg4cDnl87IYbsSBDqzVzw32Gw31l4KZ2JGl0UPI1qaQVwpUlOKfZEc4TsavAWOQd25-pwR_efOzhSgAAAA; Path=/; Domain=.rfihub.com; Expires=Tue, 17 Oct 2023 18:09:19 GMT; Secure; SameSite=None
ruds=H4sIAAAAAAAA_-MSNjU0MTG1sDA1MjSxtDAzMDUzsRDiM9QtSMk2LHFLCTP2tiwDAM7qjRElAAAA; Path=/; Domain=.rfihub.com; Secure; SameSite=None
rud=H4sIAAAAAAAA_-MSNjU0MTG1sDA1MjSxtDAzMDUzsRDiM9QtSMk2LHFLCTP2tiwDAM7qjRElAAAA; Path=/; Domain=.rfihub.com; Expires=Tue, 17 Oct 2023 18:09:19 GMT; Secure; SameSite=None
Location: https://idsync.rlcdn.com/501709.gif?partner_uid=577b985f-e759-48e8-90d1-a2e4520a9a25%3A1663870158.4256022
Content-Length: 0
Server: Jetty(9.3.29.v20201019)
x.dlx.addthis.com/e/rocketfuel_sync?na_exid=5107433824612463930
23.38.201.22200 OK 43 B URL HTTP/2 x.dlx.addthis.com/e/rocketfuel_sync?na_exid=5107433824612463930
IP 23.38.201.22:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /e/rocketfuel_sync?na_exid=5107433824612463930 HTTP/1.1
Host: x.dlx.addthis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20814341p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 43
expires: Thu, 22 Sep 2022 18:09:19 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 22 Sep 2022 18:09:19 GMT
strict-transport-security: max-age=2628000
X-Firefox-Spdy: h2
ib.adnxs.com/getuid?https%3A%2F%2Fidsync.rlcdn.com%2F52154.gif%3Fserved_by%3Devergreen%26partner_uid%3D%24UID
37.252.173.62307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/getuid?https%3A%2F%2Fidsync.rlcdn.com%2F52154.gif%3Fserved_by%3Devergreen%26partner_uid%3D%24UID
IP 37.252.173.62:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?https%3A%2F%2Fidsync.rlcdn.com%2F52154.gif%3Fserved_by%3Devergreen%26partner_uid%3D%24UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20814341p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Thu, 22 Sep 2022 18:09:19 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Fidsync.rlcdn.com%252F52154.gif%253Fserved_by%253Devergreen%2526partner_uid%253D%2524UID
AN-X-Request-Uuid: c71879ca-cb49-4b7e-9019-de7c2a89d055
Set-Cookie: uuid2=180915449034420873; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 21-Dec-2022 18:09:19 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 535.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Fidsync.rlcdn.com%252F52154.gif%253Fserved_by%253Devergreen%2526partner_uid%253D%2524UID
37.252.173.62302 Found 0 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%253A%252F%252Fidsync.rlcdn.com%252F52154.gif%253Fserved_by%253Devergreen%2526partner_uid%253D%2524UID
IP 37.252.173.62:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fgetuid%3Fhttps%253A%252F%252Fidsync.rlcdn.com%252F52154.gif%253Fserved_by%253Devergreen%2526partner_uid%253D%2524UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20814341p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.21.3
Date: Thu, 22 Sep 2022 18:09:19 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://idsync.rlcdn.com/52154.gif?served_by=evergreen&partner_uid=0
AN-X-Request-Uuid: bd3cb6c4-b87a-4691-99ed-e3e96b318665
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 535.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
www.customink.com/ink/sb-localinfo
54.230.111.26200 OK 0 B URL HTTP/2 www.customink.com/ink/sb-localinfo
IP 54.230.111.26:0
GET /ink/sb-localinfo HTTP/1.1
Host: www.customink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.customink.com/
Cookie: optimizelyEndUserId=oeu1663870153476r0.29211388897556534; feature_shipping_guarantee_v2=control; page_tests=o%3A1663870153650%3Da%253As%25253Ashipguarantee-control%255Es%25253Ahomecta-test; feature_homepage_cta_test_aug_2022=test
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Thu, 22 Sep 2022 18:09:14 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.customink.com
access-control-request-method: GET
cache-control: max-age=0, private, must-revalidate
etag: W/"c1447bf1b499b5530546603fa9ef2f5c"
server: nginx
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-request-id: bacebecc-6c68-442d-a5ad-42e467e499ad
x-runtime: 0.057757
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0dv45hDxx13uOTEeE812Xb_LJw9vk-Rlyzu6POugKnUzdI1n8ix-Bw==
X-Firefox-Spdy: h2
accdn.lpsnmedia.net/api/account/23156914/configuration/le-campaigns/campaigns/605500712/engagements/225974214/revision/2058?v=3.0&cb=lp225974214&flavor=dependency
178.249.101.99200 OK 0 B URL HTTP/2 accdn.lpsnmedia.net/api/account/23156914/configuration/le-campaigns/campaigns/605500712/engagements/225974214/revision/2058?v=3.0&cb=lp225974214&flavor=dependency
IP 178.249.101.99:0
GET /api/account/23156914/configuration/le-campaigns/campaigns/605500712/engagements/225974214/revision/2058?v=3.0&cb=lp225974214&flavor=dependency HTTP/1.1
Host: accdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Sep 2022 18:09:17 GMT
content-type: application/javascript
set-cookie: ADRUM_BTa=R:26|g:248cff92-7186-4e2c-9dd6-d8bcdd3ac6a7; Max-Age=30; Expires=Thu, 22-Sep-2022 18:09:47 GMT; Path=/
ADRUM_BTa=R:26|g:248cff92-7186-4e2c-9dd6-d8bcdd3ac6a7|n:livepersonltd_93a08561-b03e-475e-b29b-9ad4aa207daf; Max-Age=30; Expires=Thu, 22-Sep-2022 18:09:47 GMT; Path=/
SameSite=None; Max-Age=30; Expires=Thu, 22-Sep-2022 18:09:47 GMT; Path=/; Secure
ADRUM_BT1=R:26|i:2241585; Max-Age=30; Expires=Thu, 22-Sep-2022 18:09:47 GMT; Path=/
ADRUM_BT1=R:26|i:2241585|e:7; Max-Age=30; Expires=Thu, 22-Sep-2022 18:09:47 GMT; Path=/
vary: Accept
expires: Thu, 22 Sep 2022 18:10:17 GMT
x-envoy-upstream-service-time: 1
server: ws
strict-transport-security: max-age=99999999999; includeSubDomains
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
x-cache-status: EXPIRED
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.optimizely.com/js/21861540101.js
23.38.200.155200 OK 0 B URL HTTP/2 cdn.optimizely.com/js/21861540101.js
IP 23.38.200.155:0
GET /js/21861540101.js HTTP/1.1
Host: cdn.optimizely.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: UMVB1UTq/c97XVWmLCce8ErkAGN613UpbK7xm68n7jIUXh9lVyIHHIXh3UsVCmj5l+SFhN+NUac=
x-amz-request-id: M692M0A16YW1VRH1
x-amz-replication-status: COMPLETED
last-modified: Mon, 19 Sep 2022 22:28:17 GMT
etag: "d1bdcf5f6cae4e0ddb61cbda2f2cc456"
x-amz-server-side-encryption: AES256
x-amz-meta-revision: 119
x-amz-meta-pci_enabled: False
content-encoding: gzip
x-amz-version-id: GkDr7jxGEYN0mvE1Y9nuFxx4ZKFvdtL0
accept-ranges: bytes
content-type: text/javascript; charset=utf-8
server: AmazonS3
content-length: 84390
vary: Accept-Encoding
cache-control: max-age=300
date: Thu, 22 Sep 2022 18:09:13 GMT
server-timing: cdn;desc="AkamaiION";dur=0,rtt;desc="1";dur=0,cdnip;desc="23.38.200.155";dur=0,cdnmap;desc="a5048.dsca.akamaiedge.net";dur=0,proto;desc="h2";dur=0
access-control-max-age: 86400
access-control-expose-headers: x-amz-meta-revision
access-control-allow-headers: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
lpcdn.lpsnmedia.net/le_secure_storage/3.18.0.0-release_5078/storage.secure.min.html?loc=https%3A%2F%2Fwww.customink.com&site=23156914&env=prod
178.249.97.98200 OK 0 B URL HTTP/2 lpcdn.lpsnmedia.net/le_secure_storage/3.18.0.0-release_5078/storage.secure.min.html?loc=https%3A%2F%2Fwww.customink.com&site=23156914&env=prod
IP 178.249.97.98:0
GET /le_secure_storage/3.18.0.0-release_5078/storage.secure.min.html?loc=https%3A%2F%2Fwww.customink.com&site=23156914&env=prod HTTP/1.1
Host: lpcdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Sep 2022 18:09:15 GMT
content-type: text/html
last-modified: Mon, 08 Aug 2022 03:15:58 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Fri, 22 Sep 2023 18:09:15 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
X-Firefox-Spdy: h2
www.customink.com/
54.230.111.26200 OK 0 B IP 54.230.111.26:0
GET / HTTP/1.1
Host: www.customink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
content-type: text/html; charset=utf-8
date: Thu, 22 Sep 2022 18:05:52 GMT
cache-control: max-age=3600, public
etag: W/"ae242641b39f80db33f9da94981264dd"
server: nginx
strict-transport-security: max-age=300
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-request: fb8bdef9-0228-4340-ad49-acb0fcbf0f51
x-runtime: 0.029600
x-xss-protection: 1; mode=block
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: EoYL9oDOtvqdsnI_QSeunV_AiQp3hAGN-sSYBC97nSJ6G1ZpMW9K4w==
age: 201
X-Firefox-Spdy: h2
liveapi.yext.com/v2/accounts/me/entities/geosearch?v=20190117&api_key=2181ea8f899d7b657336dbb29c643737&location=59.955,10.859&radius=15&filter=%7B%0A%20%20%27c_show%27%3A%20%7B%0A%20%20%20%20%27%24eq%27%3A%20true%0A%20%20%7D%0A%7D
104.18.173.63200 OK 0 B URL HTTP/2 liveapi.yext.com/v2/accounts/me/entities/geosearch?v=20190117&api_key=2181ea8f899d7b657336dbb29c643737&location=59.955,10.859&radius=15&filter=%7B%0A%20%20%27c_show%27%3A%20%7B%0A%20%20%20%20%27%24eq%27%3A%20true%0A%20%20%7D%0A%7D
IP 104.18.173.63:0
GET /v2/accounts/me/entities/geosearch?v=20190117&api_key=2181ea8f899d7b657336dbb29c643737&location=59.955,10.859&radius=15&filter=%7B%0A%20%20%27c_show%27%3A%20%7B%0A%20%20%20%20%27%24eq%27%3A%20true%0A%20%20%7D%0A%7D HTTP/1.1
Host: liveapi.yext.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.customink.com
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 22 Sep 2022 18:09:14 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
cache-control: no-cache
rate-limit-limit: 100000
rate-limit-remaining: 99833
rate-limit-reset: 1663873200
referrer-policy: no-referrer
strict-transport-security: max-age=31536000; includeSubDomains
vary: Accept-Encoding
yext-uuid: 01GDK67E2BGW8BT85AV164186F
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=94ySBdyXBCqQCWvsGQtyev5rEjW7AlLyXkexFdGhFRo-1663870154-0-AXl3SMCgUpNDBwq3D2ec7HUQd5ZwQU9IRnXnbfoMeOsZBlYGZrmsNWtZfss2LtdECG1YaRZQHg9F9ekQSDgzQJmB+9P+SJfEphpnrMISD83e; path=/; expires=Thu, 22-Sep-22 18:39:14 GMT; domain=.yext.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 74ecfd936e33b51b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
lpcdn.lpsnmedia.net/le_unified_window/10.20.1.9-release_5536/surveylogicinstance.min.js?version=10.20.1.9-release_5536
178.249.97.98200 OK 0 B URL HTTP/2 lpcdn.lpsnmedia.net/le_unified_window/10.20.1.9-release_5536/surveylogicinstance.min.js?version=10.20.1.9-release_5536
IP 178.249.97.98:0
GET /le_unified_window/10.20.1.9-release_5536/surveylogicinstance.min.js?version=10.20.1.9-release_5536 HTTP/1.1
Host: lpcdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 22 Sep 2022 18:09:15 GMT
content-type: application/javascript
last-modified: Wed, 31 Aug 2022 14:50:35 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Fri, 22 Sep 2023 18:09:15 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
X-Firefox-Spdy: h2
accdn.lpsnmedia.net/api/account/23156914/configuration/le-campaigns/campaigns/605500712/engagements/243758014/revision/2058?v=3.0&cb=lp243758014&flavor=dependency
178.249.101.99200 OK 0 B URL HTTP/2 accdn.lpsnmedia.net/api/account/23156914/configuration/le-campaigns/campaigns/605500712/engagements/243758014/revision/2058?v=3.0&cb=lp243758014&flavor=dependency
IP 178.249.101.99:0
GET /api/account/23156914/configuration/le-campaigns/campaigns/605500712/engagements/243758014/revision/2058?v=3.0&cb=lp243758014&flavor=dependency HTTP/1.1
Host: accdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Sep 2022 18:09:17 GMT
content-type: application/javascript
set-cookie: ADRUM_BTa=R:26|g:c93c0c27-d4b6-45bb-a1be-d1f5f66f3334; Max-Age=30; Expires=Thu, 22-Sep-2022 18:09:47 GMT; Path=/
ADRUM_BTa=R:26|g:c93c0c27-d4b6-45bb-a1be-d1f5f66f3334|n:livepersonltd_93a08561-b03e-475e-b29b-9ad4aa207daf; Max-Age=30; Expires=Thu, 22-Sep-2022 18:09:47 GMT; Path=/
SameSite=None; Max-Age=30; Expires=Thu, 22-Sep-2022 18:09:47 GMT; Path=/; Secure
ADRUM_BT1=R:26|i:2241585; Max-Age=30; Expires=Thu, 22-Sep-2022 18:09:47 GMT; Path=/
ADRUM_BT1=R:26|i:2241585|e:6; Max-Age=30; Expires=Thu, 22-Sep-2022 18:09:47 GMT; Path=/
vary: Accept
expires: Thu, 22 Sep 2022 18:10:17 GMT
x-envoy-upstream-service-time: 1
server: ws
strict-transport-security: max-age=99999999999; includeSubDomains
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
x-cache-status: EXPIRED
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
www.customink.com/interactions/date
54.230.111.26200 OK 0 B URL HTTP/2 www.customink.com/interactions/date
IP 54.230.111.26:0
GET /interactions/date HTTP/1.1
Host: www.customink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Cookie: optimizelyEndUserId=oeu1663870153476r0.29211388897556534
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Thu, 22 Sep 2022 18:09:14 GMT
api-version: 1
cache-control: max-age=0, private, must-revalidate
content-security-policy: frame-ancestors http://*.customink.com https://*.customink.com
etag: W/"86eb653c5e2f34c927de9f17264f4543"
server: nginx
strict-transport-security: max-age=300
x-request-id: c8919d17-dd66-4e57-ab1d-8c3487880d07
x-runtime: 0.004769
x-cache: Miss from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: pHwA5ro3oryELOm_08xLDq2QB-c9-vPYpuEkE5Baf8Wv4_jfIF-0tw==
X-Firefox-Spdy: h2
lpcdn.lpsnmedia.net/le_unified_window/10.20.1.9-release_5536/ui-framework.js?version=10.20.1.9-release_5536
178.249.97.98200 OK 0 B URL HTTP/2 lpcdn.lpsnmedia.net/le_unified_window/10.20.1.9-release_5536/ui-framework.js?version=10.20.1.9-release_5536
IP 178.249.97.98:0
GET /le_unified_window/10.20.1.9-release_5536/ui-framework.js?version=10.20.1.9-release_5536 HTTP/1.1
Host: lpcdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 22 Sep 2022 18:09:15 GMT
content-type: application/javascript
last-modified: Wed, 31 Aug 2022 14:50:35 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Fri, 22 Sep 2023 18:09:15 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
X-Firefox-Spdy: h2
accdn.lpsnmedia.net/api/account/23156914/configuration/le-campaigns/campaigns/605500712/engagements/2815105930/revision/2058?v=3.0&cb=lp2815105930&flavor=dependency
178.249.101.99200 OK 0 B URL HTTP/2 accdn.lpsnmedia.net/api/account/23156914/configuration/le-campaigns/campaigns/605500712/engagements/2815105930/revision/2058?v=3.0&cb=lp2815105930&flavor=dependency
IP 178.249.101.99:0
GET /api/account/23156914/configuration/le-campaigns/campaigns/605500712/engagements/2815105930/revision/2058?v=3.0&cb=lp2815105930&flavor=dependency HTTP/1.1
Host: accdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Sep 2022 18:09:17 GMT
content-type: application/javascript
set-cookie: ADRUM_BTa=R:26|g:17959e33-37ee-4ff0-a42d-40e2f1945383; Max-Age=30; Expires=Thu, 22-Sep-2022 18:09:47 GMT; Path=/
ADRUM_BTa=R:26|g:17959e33-37ee-4ff0-a42d-40e2f1945383|n:livepersonltd_93a08561-b03e-475e-b29b-9ad4aa207daf; Max-Age=30; Expires=Thu, 22-Sep-2022 18:09:47 GMT; Path=/
SameSite=None; Max-Age=30; Expires=Thu, 22-Sep-2022 18:09:47 GMT; Path=/; Secure
ADRUM_BT1=R:26|i:2241585; Max-Age=30; Expires=Thu, 22-Sep-2022 18:09:47 GMT; Path=/
ADRUM_BT1=R:26|i:2241585|e:11; Max-Age=30; Expires=Thu, 22-Sep-2022 18:09:47 GMT; Path=/
vary: Accept
expires: Thu, 22 Sep 2022 18:10:17 GMT
x-envoy-upstream-service-time: 2
server: ws
strict-transport-security: max-age=99999999999; includeSubDomains
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
x-cache-status: EXPIRED
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
www.customink.com/profiles/sb-identity?path=%2F
54.230.111.26200 OK 0 B URL HTTP/2 www.customink.com/profiles/sb-identity?path=%2F
IP 54.230.111.26:0
GET /profiles/sb-identity?path=%2F HTTP/1.1
Host: www.customink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.customink.com/
Cookie: optimizelyEndUserId=oeu1663870153476r0.29211388897556534; feature_shipping_guarantee_v2=control; page_tests=o%3A1663870153650%3Da%253As%25253Ashipguarantee-control%255Es%25253Ahomecta-test; feature_homepage_cta_test_aug_2022=test
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Thu, 22 Sep 2022 18:09:14 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.customink.com
access-control-request-method: GET
cache-control: no-cache, no-store
etag: W/"44136fa355b3678a1146ad16f7e8649e"
server: nginx
strict-transport-security: max-age=15552000; includeSubDomains
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-request-id: cf054bd2-6552-42fd-9d5f-cbf52dfb1e51
x-runtime: 0.002777
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 8s6s5KeAkspISnlUWQyxPM-oWz2xki4dyR_nVfcthcpJsbVQ7tv0cA==
X-Firefox-Spdy: h2
lpcdn.lpsnmedia.net/le_unified_window/10.20.1.9-release_5536/lpChatV3.min.js?version=10.20.1.9-release_5536
178.249.97.98200 OK 0 B URL HTTP/2 lpcdn.lpsnmedia.net/le_unified_window/10.20.1.9-release_5536/lpChatV3.min.js?version=10.20.1.9-release_5536
IP 178.249.97.98:0
GET /le_unified_window/10.20.1.9-release_5536/lpChatV3.min.js?version=10.20.1.9-release_5536 HTTP/1.1
Host: lpcdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 22 Sep 2022 18:09:15 GMT
content-type: application/javascript
last-modified: Wed, 31 Aug 2022 14:50:35 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Fri, 22 Sep 2023 18:09:15 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
X-Firefox-Spdy: h2
partners.tremorhub.com/sync?UIRF=5107433824612463930&r=zcKbf_sKMnu2
3.227.90.123200 OK 0 B URL HTTP/2 partners.tremorhub.com/sync?UIRF=5107433824612463930&r=zcKbf_sKMnu2
IP 3.227.90.123:0
GET /sync?UIRF=5107433824612463930&r=zcKbf_sKMnu2 HTTP/1.1
Host: partners.tremorhub.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20814341p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Sep 2022 18:09:19 GMT
content-type: image/gif
server: Apache-Coyote/1.1
p3p: CP='This is not a P3P policy. See https://telaria.com/privacy-policy/'
X-Firefox-Spdy: h2
accdn.lpsnmedia.net/api/account/23156914/configuration/le-campaigns/campaigns/605500712/engagements/1290094814/revision/2058?v=3.0&cb=lp1290094814&flavor=dependency
178.249.101.99200 OK 0 B URL HTTP/2 accdn.lpsnmedia.net/api/account/23156914/configuration/le-campaigns/campaigns/605500712/engagements/1290094814/revision/2058?v=3.0&cb=lp1290094814&flavor=dependency
IP 178.249.101.99:0
GET /api/account/23156914/configuration/le-campaigns/campaigns/605500712/engagements/1290094814/revision/2058?v=3.0&cb=lp1290094814&flavor=dependency HTTP/1.1
Host: accdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Sep 2022 18:09:17 GMT
content-type: application/javascript
set-cookie: ADRUM_BTa=R:26|g:d244096e-8946-41a0-bc43-b71e3a5cc61f; Max-Age=30; Expires=Thu, 22-Sep-2022 18:09:47 GMT; Path=/
ADRUM_BTa=R:26|g:d244096e-8946-41a0-bc43-b71e3a5cc61f|n:livepersonltd_93a08561-b03e-475e-b29b-9ad4aa207daf; Max-Age=30; Expires=Thu, 22-Sep-2022 18:09:47 GMT; Path=/
SameSite=None; Max-Age=30; Expires=Thu, 22-Sep-2022 18:09:47 GMT; Path=/; Secure
ADRUM_BT1=R:26|i:2241585; Max-Age=30; Expires=Thu, 22-Sep-2022 18:09:47 GMT; Path=/
ADRUM_BT1=R:26|i:2241585|e:8; Max-Age=30; Expires=Thu, 22-Sep-2022 18:09:47 GMT; Path=/
vary: Accept
expires: Thu, 22 Sep 2022 18:10:17 GMT
x-envoy-upstream-service-time: 1
server: ws
strict-transport-security: max-age=99999999999; includeSubDomains
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
x-cache-status: EXPIRED
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
va.v.liveperson.net/api/js/23156914?sid=lh9kNqYRTBKTkGuPTbRydQ&cb=lpCb60466x66439&t=uc&ts=1663870156686&pid=6411764990&tid=6817259240&vid=FmZTgzYmVmYTBmZTkyYjIw&sdes=%5B%7B%22type%22%3A%22impDisplay%22%2C%22campaign%22%3A1182604612%2C%22engId%22%3A1316379114%2C%22revision%22%3A2057%2C%22eContext%22%3A%5B%7B%22type%22%3A%22engagementContext%22%2C%22id%22%3A%223%22%7D%5D%7D%5D
208.89.12.87200 OK 0 B URL HTTP/2 va.v.liveperson.net/api/js/23156914?sid=lh9kNqYRTBKTkGuPTbRydQ&cb=lpCb60466x66439&t=uc&ts=1663870156686&pid=6411764990&tid=6817259240&vid=FmZTgzYmVmYTBmZTkyYjIw&sdes=%5B%7B%22type%22%3A%22impDisplay%22%2C%22campaign%22%3A1182604612%2C%22engId%22%3A1316379114%2C%22revision%22%3A2057%2C%22eContext%22%3A%5B%7B%22type%22%3A%22engagementContext%22%2C%22id%22%3A%223%22%7D%5D%7D%5D
IP 208.89.12.87:0
GET /api/js/23156914?sid=lh9kNqYRTBKTkGuPTbRydQ&cb=lpCb60466x66439&t=uc&ts=1663870156686&pid=6411764990&tid=6817259240&vid=FmZTgzYmVmYTBmZTkyYjIw&sdes=%5B%7B%22type%22%3A%22impDisplay%22%2C%22campaign%22%3A1182604612%2C%22engId%22%3A1316379114%2C%22revision%22%3A2057%2C%22eContext%22%3A%5B%7B%22type%22%3A%22engagementContext%22%2C%22id%22%3A%223%22%7D%5D%7D%5D HTTP/1.1
Host: va.v.liveperson.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Sep 2022 18:09:17 GMT
content-type: application/javascript
cache-control: no-store
server: ws
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
accdn.lpsnmedia.net/api/account/23156914/configuration/engagement-window/window-confs/2499984830?cb=lpCb81560x8682
178.249.101.99200 OK 0 B URL HTTP/2 accdn.lpsnmedia.net/api/account/23156914/configuration/engagement-window/window-confs/2499984830?cb=lpCb81560x8682
IP 178.249.101.99:0
GET /api/account/23156914/configuration/engagement-window/window-confs/2499984830?cb=lpCb81560x8682 HTTP/1.1
Host: accdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Sep 2022 18:09:17 GMT
content-type: application/javascript
set-cookie: ADRUM_BTa=R:26|g:924087a1-f4c3-442d-a6b7-757d4e05764c; Max-Age=30; Expires=Thu, 22-Sep-2022 18:09:47 GMT; Path=/
ADRUM_BTa=R:26|g:924087a1-f4c3-442d-a6b7-757d4e05764c|n:livepersonltd_93a08561-b03e-475e-b29b-9ad4aa207daf; Max-Age=30; Expires=Thu, 22-Sep-2022 18:09:47 GMT; Path=/
SameSite=None; Max-Age=30; Expires=Thu, 22-Sep-2022 18:09:47 GMT; Path=/; Secure
ADRUM_BT1=R:26|i:2241585; Max-Age=30; Expires=Thu, 22-Sep-2022 18:09:47 GMT; Path=/
ADRUM_BT1=R:26|i:2241585|e:11; Max-Age=30; Expires=Thu, 22-Sep-2022 18:09:47 GMT; Path=/
vary: Accept
expires: Thu, 22 Sep 2022 18:10:17 GMT
x-envoy-upstream-service-time: 2
server: ws
strict-transport-security: max-age=99999999999; includeSubDomains
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
x-cache-status: EXPIRED
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
www.customink.com/javascripts/promos/coupons.js
54.230.111.26404 Not Found 0 B URL HTTP/2 www.customink.com/javascripts/promos/coupons.js
IP 54.230.111.26:0
GET /javascripts/promos/coupons.js HTTP/1.1
Host: www.customink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/ink/i18nco?cc=NO
Cookie: optimizelyEndUserId=oeu1663870153476r0.29211388897556534; feature_shipping_guarantee_v2=control; page_tests=o%3A1663870153650%3Da%253As%25253Ashipguarantee-control%255Es%25253Ahomecta-test; feature_homepage_cta_test_aug_2022=test; fsTrigger=false; _gcl_au=1.1.518400836.1663870154; FPC=b4bc5b46-c917-4f4d-9d05-1bb2b674780c; FB Event ID=1663870153922.qinyfbyh; _ga=GA1.1.585473523.1663870154; _gid=GA1.2.1891393706.1663870154; _ga_9Z9D1BQPKN=GS1.1.1663870154.1.1.1663870154.60.0.0; _ga_HWLN19Z7EB=GS1.1.1663870154.1.0.1663870154.0.0.0; interactions=a%3Ao%253Acode%253Ds%25253ADL-1000%255Edate%253Dn%25253A1663870153583; ttarp_override=%2B1%20703-434-3214; _i18nco=1; _gat=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=utf-8
date: Thu, 22 Sep 2022 18:09:15 GMT
cache-control: max-age=3600, public
server: nginx
strict-transport-security: max-age=300
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-request: 1037c033-eab8-4c9a-a348-d444b0236eee
x-runtime: 0.015085
x-xss-protection: 1; mode=block
content-encoding: gzip
vary: Accept-Encoding
x-cache: Error from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: WO9EFF4AoG5FESPocvQNKEXI_uY9N_INa-OSZUt9vcHEiwNBJVRpcA==
X-Firefox-Spdy: h2
accdn.lpsnmedia.net/api/account/23156914/configuration/setting/accountproperties/?cb=accountSettingsCB
178.249.101.99200 OK 0 B URL HTTP/2 accdn.lpsnmedia.net/api/account/23156914/configuration/setting/accountproperties/?cb=accountSettingsCB
IP 178.249.101.99:0
GET /api/account/23156914/configuration/setting/accountproperties/?cb=accountSettingsCB HTTP/1.1
Host: accdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 22 Sep 2022 18:09:15 GMT
content-type: application/javascript
set-cookie: ADRUM_BTa=R:26|g:5918ec36-44bd-4496-9c63-b74f9b2ec6f6; Max-Age=30; Expires=Thu, 22-Sep-2022 18:09:45 GMT; Path=/
ADRUM_BTa=R:26|g:5918ec36-44bd-4496-9c63-b74f9b2ec6f6|n:livepersonltd_93a08561-b03e-475e-b29b-9ad4aa207daf; Max-Age=30; Expires=Thu, 22-Sep-2022 18:09:45 GMT; Path=/
SameSite=None; Max-Age=30; Expires=Thu, 22-Sep-2022 18:09:45 GMT; Path=/; Secure
ADRUM_BT1=R:26|i:2241585; Max-Age=30; Expires=Thu, 22-Sep-2022 18:09:45 GMT; Path=/
ADRUM_BT1=R:26|i:2241585|e:6; Max-Age=30; Expires=Thu, 22-Sep-2022 18:09:45 GMT; Path=/
vary: Accept
expires: Thu, 22 Sep 2022 18:10:15 GMT
x-envoy-upstream-service-time: 1
server: ws
strict-transport-security: max-age=99999999999; includeSubDomains
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
x-cache-status: EXPIRED
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
accdn.lpsnmedia.net/api/account/23156914/configuration/le-campaigns/campaigns/605500712/engagements/225974414/revision/2058?v=3.0&cb=lp225974414&flavor=dependency
178.249.101.99200 OK 0 B URL HTTP/2 accdn.lpsnmedia.net/api/account/23156914/configuration/le-campaigns/campaigns/605500712/engagements/225974414/revision/2058?v=3.0&cb=lp225974414&flavor=dependency
IP 178.249.101.99:0
GET /api/account/23156914/configuration/le-campaigns/campaigns/605500712/engagements/225974414/revision/2058?v=3.0&cb=lp225974414&flavor=dependency HTTP/1.1
Host: accdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.customink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Sep 2022 18:09:17 GMT
content-type: application/javascript
set-cookie: ADRUM_BTa=R:26|g:3cea0b23-4ef3-468f-b430-264acc5fd1e4; Max-Age=30; Expires=Thu, 22-Sep-2022 18:09:47 GMT; Path=/
ADRUM_BTa=R:26|g:3cea0b23-4ef3-468f-b430-264acc5fd1e4|n:livepersonltd_93a08561-b03e-475e-b29b-9ad4aa207daf; Max-Age=30; Expires=Thu, 22-Sep-2022 18:09:47 GMT; Path=/
SameSite=None; Max-Age=30; Expires=Thu, 22-Sep-2022 18:09:47 GMT; Path=/; Secure
ADRUM_BT1=R:26|i:2241585; Max-Age=30; Expires=Thu, 22-Sep-2022 18:09:47 GMT; Path=/
ADRUM_BT1=R:26|i:2241585|e:6; Max-Age=30; Expires=Thu, 22-Sep-2022 18:09:47 GMT; Path=/
vary: Accept
expires: Thu, 22 Sep 2022 18:10:17 GMT
x-envoy-upstream-service-time: 1
server: ws
strict-transport-security: max-age=99999999999; includeSubDomains
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
x-cache-status: EXPIRED
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2