r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1cdc095521e9ee2606059be447d1fdd5
02b5d0a5b5823e2338daf7e144700babe2a213af
8bda3aabcf331c2bfcc4c7023cd797c760fd301dc353641bb95048e072f66c66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8BDA3AABCF331C2BFCC4C7023CD797C760FD301DC353641BB95048E072F66C66"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12253
Expires: Sun, 05 Feb 2023 17:59:57 GMT
Date: Sun, 05 Feb 2023 14:35:44 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c21ba65e44ac95470c314e068e49a9eb
17a13b13738993d889d4afa3d848dc63bf6eba64
9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9BD0795B30E84CE63B6E2A365CA91BBFFC395DD955E112152066C31E63A4AB66"
Last-Modified: Sat, 04 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20825
Expires: Sun, 05 Feb 2023 20:22:49 GMT
Date: Sun, 05 Feb 2023 14:35:44 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 05 Feb 2023 13:36:18 GMT
content-type: application/json
age: 3566
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fb7b6b46e708ad73eaaa3c21e74569ae
950663c025acad81556af5aa3022ecc9d55097fe
763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64"
Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8999
Expires: Sun, 05 Feb 2023 17:05:43 GMT
Date: Sun, 05 Feb 2023 14:35:44 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: xbzilvJu6ttFraXoc09pGaBVdvNVpmgHC33YE6UeEqQb4WriR/I362IkGhVXCz8obxr4cTyiplPgKUQURkdC/w==
x-amz-request-id: NE55YWM8KE1BG3TS
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 05 Feb 2023 13:53:18 GMT
age: 2546
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 14:35:44 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 05 Feb 2023 13:49:07 GMT
age: 2797
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
www.fontstatic.com/f=bokra
104.21.28.204301 Moved Permanently 0 B URL HTTP/1.1 www.fontstatic.com/f=bokra
IP 104.21.28.204:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /f=bokra HTTP/1.1
Host: www.fontstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://shortcutforlinks.blogspot.com/
HTTP/1.1 301 Moved Permanently
Date: Sun, 05 Feb 2023 14:35:44 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sun, 05 Feb 2023 15:35:44 GMT
Location: https://www.fontstatic.com/f=bokra
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Rzwhr6SwALdUKWKH5XTntB5v1dBXx1Hgs%2Fn%2Bj9%2F1flx%2FCpgvIpNeUXmS7y6N2Im0joRPHAprVrDnNxLoeouTu8FoJMbvEXbdMFTot%2F1mqGwriZLezsIKlF3LgCm2qjLCNSNVcsQ%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 794c5fd46a94b527-OSL
alt-svc: h2=":443"; ma=60
www.fontstatic.com/f=Droid%20Arabic%20Naskh
104.21.28.204301 Moved Permanently 0 B URL HTTP/1.1 www.fontstatic.com/f=Droid%20Arabic%20Naskh
IP 104.21.28.204:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /f=Droid%20Arabic%20Naskh HTTP/1.1
Host: www.fontstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://shortcutforlinks.blogspot.com/
HTTP/1.1 301 Moved Permanently
Date: Sun, 05 Feb 2023 14:35:44 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sun, 05 Feb 2023 15:35:44 GMT
Location: https://www.fontstatic.com/f=Droid%20Arabic%20Naskh
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rx9sIZcHBEwO11MN%2BhrziglSKOS0tCLGYOoGN0VQSPTJilBLNdA8LKjBB304FPkX%2FwtJ8qeaIPVPnHSwW6xUTwIn050FNGj4PReNyxtQHDUqz%2FgRno5U8ybCAVGkpROIuVEMFD4%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 794c5fd46becb50b-OSL
alt-svc: h2=":443"; ma=60
www.fontstatic.com/f=thameen
104.21.28.204301 Moved Permanently 0 B URL HTTP/1.1 www.fontstatic.com/f=thameen
IP 104.21.28.204:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /f=thameen HTTP/1.1
Host: www.fontstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://shortcutforlinks.blogspot.com/
HTTP/1.1 301 Moved Permanently
Date: Sun, 05 Feb 2023 14:35:44 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sun, 05 Feb 2023 15:35:44 GMT
Location: https://www.fontstatic.com/f=thameen
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6W%2F1KkYQkLO7%2F3LvhC3xv4iAfCwfdIB0iQsbGSnFxye4f4MsUmWoVl0l8pyUxjbPk1248EZ4bwPaEj43Fr0jWMuKBZhgf54FNVESaRD2UG9z3FL7nqm4dy7ACdWjcciXoXiatL8%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 794c5fd46efcb51e-OSL
alt-svc: h2=":443"; ma=60
www.fontstatic.com/f=smartman
104.21.28.204301 Moved Permanently 0 B URL HTTP/1.1 www.fontstatic.com/f=smartman
IP 104.21.28.204:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /f=smartman HTTP/1.1
Host: www.fontstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://shortcutforlinks.blogspot.com/
HTTP/1.1 301 Moved Permanently
Date: Sun, 05 Feb 2023 14:35:44 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sun, 05 Feb 2023 15:35:44 GMT
Location: https://www.fontstatic.com/f=smartman
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xDNge0pObaOAL5CY44XGzmCXk%2FZ45TAiiih0jNy%2BTPHOIJIX%2FV8NWyh6mR5mSlpM%2FC7ik73Xk%2By6laXR57ANmoNkL0Dfd2Wp3dFb%2F2XVeA4kRnmLOgP96lZ8U8yulcdVypacmjM%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 794c5fd46e181c02-OSL
alt-svc: h2=":443"; ma=60
shortcutforlinks.blogspot.com/2023/02/httpsportaleddekharbankly.html?m=1
142.250.74.1200 OK 36 kB URL HTTP/1.1 shortcutforlinks.blogspot.com/2023/02/httpsportaleddekharbankly.html?m=1
IP 142.250.74.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (30534)
Hash 41e59135914fe0b78c99b46bc12768a4
c50fe792d20a6b47fa81b17c05ef602e0646a936
ef4b35a7e6834e922b6e668b2a11993d0ed4c19a7386f10b6958db24bbb7827a
NIDS Severity Alert suricata low ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M1
suricata low ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M3
suricata low ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M2
GET /2023/02/httpsportaleddekharbankly.html?m=1 HTTP/1.1
Host: shortcutforlinks.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Sun, 05 Feb 2023 14:35:44 GMT
Date: Sun, 05 Feb 2023 14:35:44 GMT
Cache-Control: private, max-age=0
Last-Modified: Sat, 04 Feb 2023 13:54:24 GMT
ETag: W/"6cb950a0dff7e4902faffa39e9a3ec9d0fd2a442ab31230be6e7f07b961b3759"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 35517
Server: GSE
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash dedf9c519ac38c4bece9c5bc895787d7
4911175c3f8a435978c5301c33c7a99a5e00a1d5
bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13865
Expires: Sun, 05 Feb 2023 18:26:49 GMT
Date: Sun, 05 Feb 2023 14:35:44 GMT
Connection: keep-alive
shortcutforlinks.blogspot.com/js/cookienotice.js
142.250.74.1200 OK 2.0 kB URL HTTP/1.1 shortcutforlinks.blogspot.com/js/cookienotice.js
IP 142.250.74.1:0
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
GET /js/cookienotice.js HTTP/1.1
Host: shortcutforlinks.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://shortcutforlinks.blogspot.com/2023/02/httpsportaleddekharbankly.html?m=1
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/javascript
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
Date: Sun, 05 Feb 2023 14:35:44 GMT
Expires: Sun, 12 Feb 2023 14:35:44 GMT
Cache-Control: public, max-age=604800
Last-Modified: Sat, 04 Feb 2023 22:55:53 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
code.jquery.com/jquery-1.10.2.min.js
69.16.175.42200 OK 33 kB URL HTTP/1.1 code.jquery.com/jquery-1.10.2.min.js
IP 69.16.175.42:0
File type ASCII text, with very long lines (32072)
Hash 68cc08e82915da8b82fc6be74ab86365
4089530b0c00f6cbd1452d7f873be85454196fd1
6c63276db5e51f227be1c9bdaf73d76fa01040499944a8c8607db0c234f0575c
GET /jquery-1.10.2.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://shortcutforlinks.blogspot.com/
HTTP/1.1 200 OK
Date: Sun, 05 Feb 2023 14:35:44 GMT
Connection: Keep-Alive
Content-Encoding: gzip
Content-Length: 32788
Content-Type: application/javascript; charset=utf-8
Last-Modified: Wed, 16 Feb 2022 10:50:39 GMT
Accept-Ranges: bytes
Server: nginx
ETag: W/"620cd6ff-16bb3"
Cache-Control: max-age=315360000, public
Access-Control-Allow-Origin: *
Vary: Accept-Encoding
X-HW: 1675607744.dop211.sk1.t,1675607744.cds243.sk1.c
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
172.217.21.162200 OK 53 kB URL HTTP/1.1 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP 172.217.21.162:0
File type ASCII text, with very long lines (3649)
Hash 17746c260ad7011c4ceb619700ae7ed4
7086de4c46ff7e231671ef5bfda8cc7ae7dfad2f
0670a7c9fad247c104d819744896bffb15fbc00fdc41a0d7fe01f04d4b48c60e
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://shortcutforlinks.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Date: Sun, 05 Feb 2023 14:35:44 GMT
Expires: Sun, 05 Feb 2023 14:35:44 GMT
Cache-Control: private, max-age=3600
Content-Type: text/javascript; charset=UTF-8
ETag: 9399675885219820241
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 52797
X-XSS-Protection: 0
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash ec9f2842f3bf273c7170be478700137e
03a10c64cff3a7bf8e1fdee63a7635f9ac9595fa
949449f239ee40f14dd2bf727ec08b9f29179e93813bec3fb2418018612a7730
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1494
Cache-Control: max-age=100951
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 14:35:44 GMT
Etag: "63dea041-118"
Expires: Mon, 06 Feb 2023 18:38:15 GMT
Last-Modified: Sat, 04 Feb 2023 18:13:21 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash ec9f2842f3bf273c7170be478700137e
03a10c64cff3a7bf8e1fdee63a7635f9ac9595fa
949449f239ee40f14dd2bf727ec08b9f29179e93813bec3fb2418018612a7730
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1494
Cache-Control: max-age=100951
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 14:35:44 GMT
Etag: "63dea041-118"
Expires: Mon, 06 Feb 2023 18:38:15 GMT
Last-Modified: Sat, 04 Feb 2023 18:13:21 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash ec9f2842f3bf273c7170be478700137e
03a10c64cff3a7bf8e1fdee63a7635f9ac9595fa
949449f239ee40f14dd2bf727ec08b9f29179e93813bec3fb2418018612a7730
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1494
Cache-Control: max-age=100951
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 14:35:44 GMT
Etag: "63dea041-118"
Expires: Mon, 06 Feb 2023 18:38:15 GMT
Last-Modified: Sat, 04 Feb 2023 18:13:21 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash ec9f2842f3bf273c7170be478700137e
03a10c64cff3a7bf8e1fdee63a7635f9ac9595fa
949449f239ee40f14dd2bf727ec08b9f29179e93813bec3fb2418018612a7730
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1494
Cache-Control: max-age=100951
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 14:35:44 GMT
Etag: "63dea041-118"
Expires: Mon, 06 Feb 2023 18:38:15 GMT
Last-Modified: Sat, 04 Feb 2023 18:13:21 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash fc7bf16e33e51d4520e0cfa0be3ecfaf
3e93d85c028046ec46aa572440aed25fb7bc57f4
4a2544cb3d0104ea30aa58178c4f816c065153c8f6289826e2b57f8e254d94eb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2334
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 14:35:44 GMT
Etag: "63df28a1-118"
Last-Modified: Sun, 05 Feb 2023 13:56:50 GMT
Server: ECS (amb/6B74)
X-Cache: HIT
Content-Length: 280
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5ac5aaa2dd1a2ab697244f3c0fe3b5b5
bb8a9aeb28cc645435760f3a9a57d85e295de419
d42327bb295e41a2b04efa1c2ad6094a3480d0010de10bb32600f4d17fe9f0d4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 14:35:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 6e013fd4c85f5e024cded5d40e6571f8
bd128c6fdd568329325730d503cb4fcd33bff245
ae5210489846fcf5ee0974eb81ad8fb91d7d43b4da40456c482a70e270f910a6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1358
Cache-Control: max-age=135727
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 14:35:44 GMT
Etag: "63df28a1-118"
Expires: Tue, 07 Feb 2023 04:17:51 GMT
Last-Modified: Sun, 05 Feb 2023 03:55:13 GMT
Server: ECS (amb/6BB6)
X-Cache: HIT
Content-Length: 278
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 26a15a1b880ec1026360b696b1c27074
fd35f80a1cf599da2a8e68a44477465a580440a5
a6d5caec988319523c120bc435a4ff0200b7ead114db10db19a09caeace978f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 14:35:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 28c3f02ba8cac75c2f1945e7be499cae
82390270ea7ee981db3fae587295029f335726da
ce1f772f6bd3cdd88e6f161731958d8bce7e3c019c9e618d0ed37560b79b0a4c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5941
Cache-Control: max-age=136340
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 14:35:44 GMT
Etag: "63df191f-118"
Expires: Tue, 07 Feb 2023 04:28:04 GMT
Last-Modified: Sun, 05 Feb 2023 02:49:03 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash fc7bf16e33e51d4520e0cfa0be3ecfaf
3e93d85c028046ec46aa572440aed25fb7bc57f4
4a2544cb3d0104ea30aa58178c4f816c065153c8f6289826e2b57f8e254d94eb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 57
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 14:35:44 GMT
Etag: "63df28a1-118"
Last-Modified: Sun, 05 Feb 2023 14:34:47 GMT
Server: ECS (amb/6B7A)
X-Cache: HIT
Content-Length: 280
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6504477252813882027f848727dec391
be962ce99c3b930792367715ac57a88ef89d8a50
5b8caefbedeb817645442e9e9907e5c6fdd1b9e657e73e7859e4e311409c8f51
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 14:35:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-5985888800443698
172.217.21.162200 OK 50 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-5985888800443698
IP 172.217.21.162:0
File type ASCII text, with very long lines (3649)
Hash d6273d563a08a921367286dcbd2eaa7a
1c5e56f6a16f2c8efa3dd60d700bbb16e233f205
e0e23ce1198ee20f16e477fec0023c369a16b3f2487ef8f99cbefec65afbb3f8
GET /pagead/js/adsbygoogle.js?client=ca-pub-5985888800443698 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://shortcutforlinks.blogspot.com
Connection: keep-alive
Referer: http://shortcutforlinks.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Sun, 05 Feb 2023 14:35:44 GMT
expires: Sun, 05 Feb 2023 14:35:44 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 5159647070084994623
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 50006
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.blogger.com/static/v1/widgets/1149436903-widgets.js
142.250.74.41200 OK 57 kB URL HTTP/2 www.blogger.com/static/v1/widgets/1149436903-widgets.js
IP 142.250.74.41:0
File type ASCII text, with very long lines (2221)
Hash b78721b4cce75b522d9ec0d1fae9e007
4ceaa4752e3e81867193004fe928875abc0af5ce
e85f67824ac9f31deedecf0b1d58878b6b3993bad9f2b48e8312928154012f06
GET /static/v1/widgets/1149436903-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://shortcutforlinks.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56564
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Feb 2023 02:15:05 GMT
expires: Thu, 01 Feb 2024 02:15:05 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 31 Jan 2023 23:23:14 GMT
content-type: text/javascript
age: 390039
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/managed/js/adsense/m202301230101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-5985888800443698&plah=shortcutforlinks.blogspot.com&bust=31071854
172.217.21.162200 OK 121 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/managed/js/adsense/m202301230101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-5985888800443698&plah=shortcutforlinks.blogspot.com&bust=31071854
IP 172.217.21.162:0
File type ASCII text, with very long lines (4056)
Size 121 kB (121172 bytes)
Hash dd63a200f7465e7f693643f9a705c099
7a001d66060c3caad1513862aa3b450ecd155ecb
9ac786ff45f913eff7deb29b6f67300a062026bd4323a6adb60bc3bad21c7c37
GET /pagead/managed/js/adsense/m202301230101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-5985888800443698&plah=shortcutforlinks.blogspot.com&bust=31071854 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://shortcutforlinks.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Sun, 05 Feb 2023 14:35:44 GMT
expires: Sun, 05 Feb 2023 14:35:44 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: text/javascript; charset=UTF-8
etag: 15768196817116761778
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 121172
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.fontstatic.com/f=smartman
104.21.28.204200 OK 621 B URL HTTP/2 www.fontstatic.com/f=smartman
IP 104.21.28.204:0
File type Unicode text, UTF-8 text, with no line terminators
Hash 1f01595117dfe4fa15b1987a76b2b8f2
98d4d08739516ab4a786d372d5a4d17b8e9c92d9
d5570a9636f34a56a3a58a85d2267cff032be13df1200aedade50d8bc0492b55
GET /f=smartman HTTP/1.1
Host: www.fontstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://shortcutforlinks.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 14:35:44 GMT
content-type: text/css; charset=UTF-8
pragma: no-cache
x-cache: MISS
x-proxy-cache: MISS
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iNqscRTKf1MNERmMyGP%2FleE0ecIzVm55jNuG7A24ozyX4nGvdTLakq1PNEEyB5%2BP5%2BnWOL5R3Iw6QMW2zPMExLKmI2nLxTwoTkltZXqfOsnSWXzOnM6Fm8lbFJJlYTRU8wsYnbU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 794c5fd59dc50b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/html/r20230201/r20190131/zrt_lookup.html
142.250.74.98200 OK 4.2 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20230201/r20190131/zrt_lookup.html
IP 142.250.74.98:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2579)
Hash 2fb3574102373e2e076cfa2ff90cdf25
d06c985183def975546d6e47ab6369c11dcf7195
e61cbc207f7fc2f429deceff11e7a339a3d9a9574da6d035054eba02ee381345
GET /pagead/html/r20230201/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://shortcutforlinks.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 4242
x-xss-protection: 0
date: Sat, 04 Feb 2023 15:45:14 GMT
expires: Sat, 18 Feb 2023 15:45:14 GMT
cache-control: public, max-age=1209600
age: 82230
etag: 10353107486223812946
content-type: text/html; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6504477252813882027f848727dec391
be962ce99c3b930792367715ac57a88ef89d8a50
5b8caefbedeb817645442e9e9907e5c6fdd1b9e657e73e7859e4e311409c8f51
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 14:35:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 98be7fe21d059e46146a43d20c4eea92
1ec58129fea75085588be7b8baec05b0874b5274
7bb2eb5ffcd88a3b6ba7b210bdbcd4469134c9708f06befb6c616beebf8dae46
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 14:35:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
34.208.13.28101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.208.13.28:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: izTApCr7Jjo0TYsCVF0gmw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: a7RSMF6m14gPkeNDmQFluTLXpzM=
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash ec9f2842f3bf273c7170be478700137e
03a10c64cff3a7bf8e1fdee63a7635f9ac9595fa
949449f239ee40f14dd2bf727ec08b9f29179e93813bec3fb2418018612a7730
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1495
Cache-Control: max-age=100951
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 14:35:45 GMT
Etag: "63dea041-118"
Expires: Mon, 06 Feb 2023 18:38:16 GMT
Last-Modified: Sat, 04 Feb 2023 18:13:21 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 280
freeiconshop.com/wp-content/uploads/edd/stop-flat.png
195.179.237.77200 OK 21 kB URL HTTP/2 freeiconshop.com/wp-content/uploads/edd/stop-flat.png
IP 195.179.237.77:0
ASN #47583 Hostinger International Limited
File type PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced\012- data
Hash c6941665d67306427cbf8baa0f88fdb6
7706ea75eedff3bafa6a884ed2e1a6f2f96073c3
01c17b43110b6001194429a55c50c1c508ab3f3329c70e9c90c80f5bc86ae976
GET /wp-content/uploads/edd/stop-flat.png HTTP/1.1
Host: freeiconshop.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://shortcutforlinks.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Mon, 05 Feb 2024 14:35:45 GMT
content-type: image/png
last-modified: Mon, 20 Nov 2017 16:32:13 GMT
etag: "52cc-5a13038d-8894c4a55c1094a6;;;"
accept-ranges: bytes
content-length: 21196
date: Sun, 05 Feb 2023 14:35:45 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash dfcdbf455580029a0c665fe5215ac927
e5fa1eb26e208c7599a07f327dd46356b7c5e806
b118c64c81b215c1379a81a9e64aa28eb647893870c0aaae293bf6adfa311f7f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 14:35:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 6630148a03da2d4ccf19993f0fefd44c
2c747b9bc89b4240ad4340b31b993e3d947d1e5a
68c252a328d6f8dbea1935f3a4a950fb02969e70aabfff9853add357f76ecd4f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4514
Cache-Control: max-age=111874
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 14:35:45 GMT
Etag: "63debf21-117"
Expires: Mon, 06 Feb 2023 21:40:19 GMT
Last-Modified: Sat, 04 Feb 2023 20:25:05 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 8077210062c315b98902cb06c74d485b
808e94ac31f1b45185103ce25c1bc2afd056b17a
78871f45de0c58bffa6a86b50f6bd0db61932bf6a2b7d8191dba0f0eaab628b1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 14:35:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
partner.googleadservices.com/gampad/cookie.js?domain=shortcutforlinks.blogspot.com&callback=_gfp_s_&client=ca-pub-5985888800443698
216.58.207.226200 OK 254 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=shortcutforlinks.blogspot.com&callback=_gfp_s_&client=ca-pub-5985888800443698
IP 216.58.207.226:0
File type ASCII text, with very long lines (391), with no line terminators
Hash d0da6ffda8f8676131525eb2340bb960
d137e7654df98e56287e5c0622c223558bb40799
e1299ff33d374674e65c53187222af897002c48c245d2bdd8f2e61f223ae7ac9
GET /gampad/cookie.js?domain=shortcutforlinks.blogspot.com&callback=_gfp_s_&client=ca-pub-5985888800443698 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://shortcutforlinks.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sun, 05 Feb 2023 14:35:45 GMT
server: cafe
cache-control: private
content-length: 254
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c7d887fc3e3b7a68b7872c76802085c0
eb26f820776e7d87a00489eb14f918e5f6945835
915e873e95d8f0276f4763e5596b03cac487f6f8a36c65577c6622fc8560d929
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 14:35:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.fontstatic.com/f=Droid%20Arabic%20Naskh
104.21.28.204200 OK 1.3 kB URL HTTP/2 www.fontstatic.com/f=Droid%20Arabic%20Naskh
IP 104.21.28.204:0
Hash 6d6ff5804d1daf8ceca7c3827e17c220
43e0d25654bd7a194163fc4373bf096112d60b4f
311a3c295704507ed40dc45841ecae891eb26e70b54ad48537e7bc65fb2d3939
GET /f=Droid%20Arabic%20Naskh HTTP/1.1
Host: www.fontstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://shortcutforlinks.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 14:35:44 GMT
content-type: text/css; charset=UTF-8
pragma: no-cache
x-cache: MISS
x-proxy-cache: MISS
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7uzixxeAvCpQrD5hZNDzlgkg8PTER2Du%2FIfjvxpj9%2FQdYQ0889s7nWT5r5di%2F8j2mOMbD6W5JY7%2Ft9Sd6PQXdFritHpcY0ks0V1xAwiHuBC8896ScDci6tfs%2Bl3NkwIJ%2BXFXgrw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 794c5fd5ade10b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=shortcutforlinks.blogspot.com
142.250.74.130200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=shortcutforlinks.blogspot.com
IP 142.250.74.130:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=shortcutforlinks.blogspot.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://shortcutforlinks.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sun, 05 Feb 2023 14:35:45 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 6630148a03da2d4ccf19993f0fefd44c
2c747b9bc89b4240ad4340b31b993e3d947d1e5a
68c252a328d6f8dbea1935f3a4a950fb02969e70aabfff9853add357f76ecd4f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4514
Cache-Control: max-age=111874
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 14:35:45 GMT
Etag: "63debf21-117"
Expires: Mon, 06 Feb 2023 21:40:19 GMT
Last-Modified: Sat, 04 Feb 2023 20:25:05 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d85a52a6f96da59010dc4aef95c24b6d
9e6472e7398d275d976e42fe5eaa6d555146d5bd
3dca4e3f16c9147034ad26ebcb1ab8b175f12ec93697b5d749f383220d0d9069
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 14:35:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
rawgit.com/Ti9ani8/Ti9aniLFont/master/Ti9aniLFont.css
104.21.63.184200 OK 22 kB URL HTTP/2 rawgit.com/Ti9ani8/Ti9aniLFont/master/Ti9aniLFont.css
IP 104.21.63.184:0
File type ASCII text, with very long lines (29181)
Hash 602c15b5f59d1e15763e880a705511ec
12cb1371190ed37cb69952b44d867c1c42eed64f
63cae5fa8f76d2b29d9d887abc992d8a177fb7a9db8db169b061432100bbe1d4
GET /Ti9ani8/Ti9aniLFont/master/Ti9aniLFont.css HTTP/1.1
Host: rawgit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://shortcutforlinks.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 14:35:45 GMT
content-type: text/css;charset=utf-8
x-content-type-options: nosniff
x-robots-tag: none
access-control-allow-origin: *
link: <https://rawgit.com/>; rel="sunset"; title="RawGit will soon shut down. Please stop using it."
sunset: Tue, 01 Oct 2019 00:00:00 GMT
etag: W/"f5b58c6c078d11c820161dfe5585780132ddf10a01d8b9cc545ffc0dad345e2e"
cache-control: max-age=3600, s-maxage=300
vary: Accept-Encoding
rawgit-cache-status: STALE
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SMxZMvnOlGeFvbco3YXPbKFrGqEqfd0SQJT4NC2rfX9NiPbO%2FrlrnNvT8IsvGwsISEB1VyLr0Ld5hLlZQQyFt6qwWDzGH73Ie0Z%2BpkUqdUFL5noQIJn%2B6oCYoRG0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; preload
server: cloudflare
cf-ray: 794c5fd53ba9b517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c7d887fc3e3b7a68b7872c76802085c0
eb26f820776e7d87a00489eb14f918e5f6945835
915e873e95d8f0276f4763e5596b03cac487f6f8a36c65577c6622fc8560d929
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 14:35:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3556
Expires: Sun, 05 Feb 2023 15:35:02 GMT
Date: Sun, 05 Feb 2023 14:35:46 GMT
Connection: keep-alive
rawgit.com/Ti9ani8/Ti9ani-NFont/master/Ti9ani-NFont.css
104.21.63.184200 OK 53 kB URL HTTP/2 rawgit.com/Ti9ani8/Ti9ani-NFont/master/Ti9ani-NFont.css
IP 104.21.63.184:0
File type ASCII text, with very long lines (65517)
Hash 1665166fa4afa25727ade206957be790
11835faae3c301fe6b860e36d72f41f4c383557a
4d214161a778bdfbfc596006d9338518794cb3b1fb8a7c132759d125b1cd0f8e
GET /Ti9ani8/Ti9ani-NFont/master/Ti9ani-NFont.css HTTP/1.1
Host: rawgit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://shortcutforlinks.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 14:35:45 GMT
content-type: text/css;charset=utf-8
x-content-type-options: nosniff
x-robots-tag: none
access-control-allow-origin: *
link: <https://rawgit.com/>; rel="sunset"; title="RawGit will soon shut down. Please stop using it."
sunset: Tue, 01 Oct 2019 00:00:00 GMT
etag: W/"c6909a5374c66d2a3f64362b78ec598d2027f93dd7be8b2f7d9212b932a8c377"
cache-control: max-age=3600, s-maxage=300
vary: Accept-Encoding
rawgit-cache-status: STALE
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vm1XJ47vhOTl1c7x8cErWIQs7hh3QmCPh5NMx%2FTxZWDQBJ4bezu3Va7zerxw8HALLMKFLacUgQLVNRucDNNSmDbUIzmQ8RaMII%2B27G1prqALDlPB5Yz9lbIp6INq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; preload
server: cloudflare
cf-ray: 794c5fd55bf3b517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1b25bf82638deaab60981e1315ee0849
e3bd912fd1a890e64ee6746a78a674db7ff77039
a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3556
Expires: Sun, 05 Feb 2023 15:35:02 GMT
Date: Sun, 05 Feb 2023 14:35:46 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6718344-fcb4-4366-9239-8921034a7114.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6718344-fcb4-4366-9239-8921034a7114.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8e0be7db14d930d6227443314bcd1747
4e42e2ad289dfe5bd9a55d34fd768f7532bdf71d
baedfbdb08a67f9ff4c698f7e65b08d7e4c5078d0a4233e6bff529b44812735a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6718344-fcb4-4366-9239-8921034a7114.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12967
x-amzn-requestid: 38c58626-f4ad-4e2b-ad71-a628519d2ea2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmEdHFwCoAMFhxQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8b453-7da6d0c1093468d320caaa1e;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 06:25:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: t8dZTwod1-pZr8ACfp-6gfEu0TA3kGpfJrQeF8VgLg2tlrt03sa6Bg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 03:40:08 GMT
age: 39338
etag: "4e42e2ad289dfe5bd9a55d34fd768f7532bdf71d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37422a56-a7de-4ab8-ac8a-650de9dae97c.jpeg
34.120.237.76200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37422a56-a7de-4ab8-ac8a-650de9dae97c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5b6c30ad03669b66bf2f63b3edd69882
e630bd132b52b965a5ade646ea8a165d1abf6d7b
f8233d879ec17fd91909655ff8881f2ebfad84272fde3ed5e5be37580378a989
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37422a56-a7de-4ab8-ac8a-650de9dae97c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5014
x-amzn-requestid: a434aae4-fe4b-4fc7-9b7e-eeb552484e8a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fi3bIE0aoAMF6YQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d76c47-5556d14757190c842bbc6b06;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 07:05:43 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: k6YqagXr3Wr-u1uDKojEnIGW0CxU5yvWPtlzNpzoIvmg9F-rJb9uFQ==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 14:53:45 GMT
age: 85321
etag: "e630bd132b52b965a5ade646ea8a165d1abf6d7b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed9dd21c-6496-4f6e-b306-570e4802aba4.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed9dd21c-6496-4f6e-b306-570e4802aba4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 251f1a5d671fb797fb98e9a71754c341
335425603d9eec146a3c03422dbca91134272e53
74932f07561287e33302aabcf9c639e9df7ae0fbc4bf71f5467310aabafea208
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed9dd21c-6496-4f6e-b306-570e4802aba4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6202
x-amzn-requestid: 01b85fcd-69a0-49da-8640-32a3ef19378a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fi3bUFEJoAMFapg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d76c48-14817e717361e09170714e9d;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 07:05:44 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 1_1mEN4j5cciWEiimz4PRjx3PNGnrSRib9oEJAdYLrrtyjqnz_zvcQ==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 12:31:54 GMT
age: 7432
etag: "335425603d9eec146a3c03422dbca91134272e53"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6661b7263315f5eb3cd2465f671e1fcd
b7b5831c6b3ccc41d7a980b6088adc10ff8785f1
eb25507950d81db4b54a1af7fadaceee1bcff780eb28b6a04dbfb3886785f5b7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8527
x-amzn-requestid: c11233d1-ef16-4b03-9174-a493011dc0ff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyEoFHOKIAMFZwQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8166-4a290e811547293f437311bb;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:49:26 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 1F0bxib8bn4kZvGBTL63ecNDDEy6XZ8kIb8K5BNqusVL9SvAAARUJw==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 22:11:45 GMT
age: 59041
etag: "b7b5831c6b3ccc41d7a980b6088adc10ff8785f1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8a9d301-2b38-4046-91c2-941ed351597a.jpeg
34.120.237.76200 OK 3.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8a9d301-2b38-4046-91c2-941ed351597a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d7a466d89c75ff3459b7328591db52cf
c3f29f9c2fbdc1fa2aef7a9e79ca796b28394afb
e73243be3d01d12a224c4e9826c4f52610cf7722eee69f62755278d7550705f1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8a9d301-2b38-4046-91c2-941ed351597a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3474
x-amzn-requestid: 5846c080-9f25-4590-863c-8af2126cdbe1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f1WXEEbnoAMFRdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ded0f9-1bd490125feadc14366e7ca0;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 21:41:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: d8aQmkW-aqLFpb79RynlJG2vY1GTDbjLNY0Qukgg_WIjdI6cmbVKFw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 22:10:58 GMT
etag: "c3f29f9c2fbdc1fa2aef7a9e79ca796b28394afb"
content-type: image/jpeg
age: 59088
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad60ff0-69ec-4be2-9334-41be71ca4b7f.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad60ff0-69ec-4be2-9334-41be71ca4b7f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1a4eed23b240d04a3cd6b085cfa93375
f29b9dc3f6bbd2ba76a5a4570ce044d5f240fd00
93e8371f80c12d3753842e36001dbb8d3dc2223b10a594639752cd816c492d4e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad60ff0-69ec-4be2-9334-41be71ca4b7f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10905
x-amzn-requestid: 093778fc-231c-452f-a6fc-15f4eb41ade0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmNJCEDzIAMFmxA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8c239-7f56d6e56392f373541db219;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:24:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: jIvBQjGh9JzWQM0YpEYiqP5CcBrkwqLVjAYhMWJ1P1H0MRkm7kpnpg==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 22:12:06 GMT
age: 59020
etag: "f29b9dc3f6bbd2ba76a5a4570ce044d5f240fd00"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 7d70322f4f6af3289d4d7f4c22a4c179
f2abd2a7c1575ab0b362920699143dce3ff60d75
0e5b166c8e8d91421e0122ab3863a9cdd88ca4dffa1d9beb9cdf61aca0ac95f2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 14:35:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 711bfa565919548ccadd9e9e1ac41792
4ff0e50ab07d187f3e71e30924990461c77f8f04
92d179de98d6fd14807963bae6dae8852197f9fd7e498c3abd98143ff209ca28
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 14:35:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
216.58.211.2200 OK 49 kB URL HTTP/2 www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
IP 216.58.211.2:0
File type ASCII text, with very long lines (3504)
Hash 40b8ffdc606e81703c5f6a39df96f373
0a39b905fe6b8f947d256b01614abcdd27baef65
93cfc3bdb53008e8640dee5f3e7515b10a9b2959e69d8f2919f3d243cf547f36
GET /activeview/js/current/rx_lidar.js?cache=r20110914 HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/active-view-scs-read-write-acl
cross-origin-opener-policy: same-origin; report-to="active-view-scs-read-write-acl"
report-to: {"group":"active-view-scs-read-write-acl","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/active-view-scs-read-write-acl"}]}
content-length: 49146
date: Sun, 05 Feb 2023 14:35:46 GMT
expires: Sun, 05 Feb 2023 14:35:46 GMT
cache-control: private, max-age=3000
etag: "1675254965429469"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
shortcutforlinks.blogspot.com/favicon.ico
142.250.74.1200 OK 412 B URL HTTP/1.1 shortcutforlinks.blogspot.com/favicon.ico
IP 142.250.74.1:0
File type MS Windows icon resource - 2 icons, 32x32, 8 bits/pixel, 16x16, 8 bits/pixel\012- data
Hash 501c61a70f5c41181aa050d9110909ca
5b985d5671a7caf686fdfb1df13488c4407f6c9f
c4aaf001607ee331f6871b4dbbf45942b1e197726714fd106e46d70cc10ee97e
GET /favicon.ico HTTP/1.1
Host: shortcutforlinks.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://shortcutforlinks.blogspot.com/2023/02/httpsportaleddekharbankly.html?m=1
HTTP/1.1 200 OK
Content-Type: image/x-icon; charset=UTF-8
Expires: Sun, 05 Feb 2023 14:35:46 GMT
Date: Sun, 05 Feb 2023 14:35:46 GMT
Cache-Control: private, max-age=86400
Last-Modified: Sat, 04 Feb 2023 13:54:24 GMT
ETag: W/"6cb950a0dff7e4902faffa39e9a3ec9d0fd2a442ab31230be6e7f07b961b3759"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 412
Server: GSE
tpc.googlesyndication.com/pagead/js/r20230201/r20110914/client/qs_click_protection_fy2021.js
216.58.207.193200 OK 7.6 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20230201/r20110914/client/qs_click_protection_fy2021.js
IP 216.58.207.193:0
File type ASCII text, with very long lines (1605)
Hash aeaebc4fec11dcafa566897f3b2aa937
7b4507c8793c1ce833dccaeb7dbc956c1fd06668
c23b4a16d9468c0018f502492594408fc809fc0fe003aed2f1145ba3dca87bae
GET /pagead/js/r20230201/r20110914/client/qs_click_protection_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 7647
x-xss-protection: 0
date: Sat, 04 Feb 2023 21:43:53 GMT
expires: Sat, 18 Feb 2023 21:43:53 GMT
cache-control: public, max-age=1209600
age: 60713
etag: 2161395064574532456
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 7d70322f4f6af3289d4d7f4c22a4c179
f2abd2a7c1575ab0b362920699143dce3ff60d75
0e5b166c8e8d91421e0122ab3863a9cdd88ca4dffa1d9beb9cdf61aca0ac95f2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 14:35:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/pagead/js/r20230201/r20110914/client/window_focus_fy2021.js
216.58.207.193200 OK 1.2 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20230201/r20110914/client/window_focus_fy2021.js
IP 216.58.207.193:0
File type ASCII text, with very long lines (1054)
Hash 169edf919beed1ee17c8a752ef12132e
b7fbae15ed7789984ee59618845b914aae37bf3e
2bcf9aebfd80a2558d54f39de59542c3df52610616fb2e4380d9f3d976cc13fc
GET /pagead/js/r20230201/r20110914/client/window_focus_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1236
x-xss-protection: 0
date: Sat, 04 Feb 2023 21:43:53 GMT
expires: Sat, 18 Feb 2023 21:43:53 GMT
cache-control: public, max-age=1209600
age: 60713
etag: 15004572836499977866
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash fb7fdccff60466e15612a34e99430ca2
533fc318060c1c299d3149826ba01bc5f1af6248
1dce2ce67eebdb2f87476abb53abb623160b838968c86c84fde6279a8079f15d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2633
Cache-Control: max-age=148481
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 14:35:46 GMT
Etag: "63df557a-138"
Expires: Tue, 07 Feb 2023 07:50:27 GMT
Last-Modified: Sun, 05 Feb 2023 07:06:34 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 312
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash fb7fdccff60466e15612a34e99430ca2
533fc318060c1c299d3149826ba01bc5f1af6248
1dce2ce67eebdb2f87476abb53abb623160b838968c86c84fde6279a8079f15d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2633
Cache-Control: max-age=148481
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 14:35:46 GMT
Etag: "63df557a-138"
Expires: Tue, 07 Feb 2023 07:50:27 GMT
Last-Modified: Sun, 05 Feb 2023 07:06:34 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 312
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash fb7fdccff60466e15612a34e99430ca2
533fc318060c1c299d3149826ba01bc5f1af6248
1dce2ce67eebdb2f87476abb53abb623160b838968c86c84fde6279a8079f15d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6189
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 14:35:46 GMT
Last-Modified: Sun, 05 Feb 2023 12:52:37 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 312
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash fb7fdccff60466e15612a34e99430ca2
533fc318060c1c299d3149826ba01bc5f1af6248
1dce2ce67eebdb2f87476abb53abb623160b838968c86c84fde6279a8079f15d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2633
Cache-Control: max-age=148481
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 14:35:46 GMT
Etag: "63df557a-138"
Expires: Tue, 07 Feb 2023 07:50:27 GMT
Last-Modified: Sun, 05 Feb 2023 07:06:34 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 312
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash fb7fdccff60466e15612a34e99430ca2
533fc318060c1c299d3149826ba01bc5f1af6248
1dce2ce67eebdb2f87476abb53abb623160b838968c86c84fde6279a8079f15d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2917
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 14:35:46 GMT
Last-Modified: Sun, 05 Feb 2023 13:47:09 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 312
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 520cde9d8aa0d328c44edd5dd7157c1a
e8f098e0a6030823bfb88683ad179c14423d32cb
50bd5ca852d181045be035b06d8ca7d0546c34c7d8bff390387f64dec3fdbfac
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5777
Cache-Control: max-age=106988
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 14:35:46 GMT
Etag: "63dea71d-13a"
Expires: Mon, 06 Feb 2023 20:18:54 GMT
Last-Modified: Sat, 04 Feb 2023 18:42:37 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 314
rtb.nl.eu.criteo.com/google/auction/notify?profile=14&payload=kKnZE7OzWbsDmAKdg2ICAgAAADBl7tRxpBOAEMG-32MC50fNKh7Bhpr4JwASAAAKDkFRVUJBZ1lCQWdFQkFn&wp=Y9--wgAA16ACO8gCAAJT1AvN08-Lb9xMx-Q2Qw
178.250.2.129200 OK 0 B URL HTTP/2 rtb.nl.eu.criteo.com/google/auction/notify?profile=14&payload=kKnZE7OzWbsDmAKdg2ICAgAAADBl7tRxpBOAEMG-32MC50fNKh7Bhpr4JwASAAAKDkFRVUJBZ1lCQWdFQkFn&wp=Y9--wgAA16ACO8gCAAJT1AvN08-Lb9xMx-Q2Qw
IP 178.250.2.129:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /google/auction/notify?profile=14&payload=kKnZE7OzWbsDmAKdg2ICAgAAADBl7tRxpBOAEMG-32MC50fNKh7Bhpr4JwASAAAKDkFRVUJBZ1lCQWdFQkFn&wp=Y9--wgAA16ACO8gCAAJT1AvN08-Lb9xMx-Q2Qw HTTP/1.1
Host: rtb.nl.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server-processing-duration-in-ticks: 312532
date: Sun, 05 Feb 2023 14:35:46 GMT
server: Kestrel
content-length: 0
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
rtb.nl.eu.criteo.com/google/auction/notify?profile=14&payload=kKnZE7OzWaAB2ASdg2ICAgAAAChmAh9aITS5EMG-32Ngimhp3w-hFoL1wwASAAAKDkFRVUJBZ1lCQWdFQkFn&wp=Y9--wgABBYwCO8vrAAUQY-xWCjBh3mgcx7BY8A
178.250.2.129200 OK 0 B URL HTTP/2 rtb.nl.eu.criteo.com/google/auction/notify?profile=14&payload=kKnZE7OzWaAB2ASdg2ICAgAAAChmAh9aITS5EMG-32Ngimhp3w-hFoL1wwASAAAKDkFRVUJBZ1lCQWdFQkFn&wp=Y9--wgABBYwCO8vrAAUQY-xWCjBh3mgcx7BY8A
IP 178.250.2.129:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /google/auction/notify?profile=14&payload=kKnZE7OzWaAB2ASdg2ICAgAAAChmAh9aITS5EMG-32Ngimhp3w-hFoL1wwASAAAKDkFRVUJBZ1lCQWdFQkFn&wp=Y9--wgABBYwCO8vrAAUQY-xWCjBh3mgcx7BY8A HTTP/1.1
Host: rtb.nl.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server-processing-duration-in-ticks: 169868
date: Sun, 05 Feb 2023 14:35:46 GMT
server: Kestrel
content-length: 0
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
rtb.nl.eu.criteo.com/google/auction/notify?profile=14&payload=kKnZE7OzWYQJmAKdg2ICAgAAAOlXpHygP50GEMG-32NwXbVTyPxThEPP1gASAAAKDkFRVUJBZ1lCQWdFQkFn&wp=Y9--wgABLSQCO8saAAw94W9SKzNXofNOQQ-5KA
178.250.2.129200 OK 0 B URL HTTP/2 rtb.nl.eu.criteo.com/google/auction/notify?profile=14&payload=kKnZE7OzWYQJmAKdg2ICAgAAAOlXpHygP50GEMG-32NwXbVTyPxThEPP1gASAAAKDkFRVUJBZ1lCQWdFQkFn&wp=Y9--wgABLSQCO8saAAw94W9SKzNXofNOQQ-5KA
IP 178.250.2.129:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /google/auction/notify?profile=14&payload=kKnZE7OzWYQJmAKdg2ICAgAAAOlXpHygP50GEMG-32NwXbVTyPxThEPP1gASAAAKDkFRVUJBZ1lCQWdFQkFn&wp=Y9--wgABLSQCO8saAAw94W9SKzNXofNOQQ-5KA HTTP/1.1
Host: rtb.nl.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server-processing-duration-in-ticks: 318043
date: Sun, 05 Feb 2023 14:35:46 GMT
server: Kestrel
content-length: 0
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash a26dd45772782569507921c81981f96b
b659845f8d852eb9e3bd057d7945979e6f98af69
d6924deb1b3078cd5950d4c6a7b5e17f90f5b18f510df4c466aae5f45501062b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4872
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 14:35:47 GMT
Last-Modified: Sun, 05 Feb 2023 13:14:35 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 312
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash a26dd45772782569507921c81981f96b
b659845f8d852eb9e3bd057d7945979e6f98af69
d6924deb1b3078cd5950d4c6a7b5e17f90f5b18f510df4c466aae5f45501062b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3653
Cache-Control: max-age=88318
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 14:35:47 GMT
Etag: "63de667c-138"
Expires: Mon, 06 Feb 2023 15:07:45 GMT
Last-Modified: Sat, 04 Feb 2023 14:06:52 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 312
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash a26dd45772782569507921c81981f96b
b659845f8d852eb9e3bd057d7945979e6f98af69
d6924deb1b3078cd5950d4c6a7b5e17f90f5b18f510df4c466aae5f45501062b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4872
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 14:35:47 GMT
Last-Modified: Sun, 05 Feb 2023 13:14:35 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 312
rtb.fr.eu.criteo.com/google/auction/notify?profile=14&payload=kKnZE7OzWYQJmAKdg2ICAgAAAJ6TM4AQE1pvEMK-32PeHR0FGcNl7Hw_8QASAAAKDkFRVUJCUVlCQlFFQkJR&wp=Y9--wgABQjcCO8vAAAg7kuH_QPfZzxa-w-I_3g
178.250.0.129200 OK 0 B URL HTTP/2 rtb.fr.eu.criteo.com/google/auction/notify?profile=14&payload=kKnZE7OzWYQJmAKdg2ICAgAAAJ6TM4AQE1pvEMK-32PeHR0FGcNl7Hw_8QASAAAKDkFRVUJCUVlCQlFFQkJR&wp=Y9--wgABQjcCO8vAAAg7kuH_QPfZzxa-w-I_3g
IP 178.250.0.129:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /google/auction/notify?profile=14&payload=kKnZE7OzWYQJmAKdg2ICAgAAAJ6TM4AQE1pvEMK-32PeHR0FGcNl7Hw_8QASAAAKDkFRVUJCUVlCQlFFQkJR&wp=Y9--wgABQjcCO8vAAAg7kuH_QPfZzxa-w-I_3g HTTP/1.1
Host: rtb.fr.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server-processing-duration-in-ticks: 222066
date: Sun, 05 Feb 2023 14:35:46 GMT
server: Kestrel
content-length: 0
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
rtb.fr.eu.criteo.com/google/auction/notify?profile=14&payload=kKnZE7OzWYMImAKdg2ICAgAAALaJiMF9fdwsEMG-32NYf0CHveEXMAEv0gASAAAKDkFRVUJCUVlCQlFFQkJR&wp=Y9--wgABL44KmqbGAACix-899YnneYhm7WYj3g
178.250.0.129200 OK 0 B URL HTTP/2 rtb.fr.eu.criteo.com/google/auction/notify?profile=14&payload=kKnZE7OzWYMImAKdg2ICAgAAALaJiMF9fdwsEMG-32NYf0CHveEXMAEv0gASAAAKDkFRVUJCUVlCQlFFQkJR&wp=Y9--wgABL44KmqbGAACix-899YnneYhm7WYj3g
IP 178.250.0.129:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /google/auction/notify?profile=14&payload=kKnZE7OzWYMImAKdg2ICAgAAALaJiMF9fdwsEMG-32NYf0CHveEXMAEv0gASAAAKDkFRVUJCUVlCQlFFQkJR&wp=Y9--wgABL44KmqbGAACix-899YnneYhm7WYj3g HTTP/1.1
Host: rtb.fr.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server-processing-duration-in-ticks: 250343
date: Sun, 05 Feb 2023 14:35:47 GMT
server: Kestrel
content-length: 0
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
rtb.fr.eu.criteo.com/google/auction/notify?profile=14&payload=kKnZE7OzWfkHmAKdg2ICAgAAAFPQLaBnP3aNEMG-32OS0i8xKNRGAIUVmAASAAAKDkFRVUJCUVlEQlFFQkJR&wp=Y9--wgABcYMKmu1BAAKaPwthlbdjaLQupKeqWQ
178.250.0.129200 OK 0 B URL HTTP/2 rtb.fr.eu.criteo.com/google/auction/notify?profile=14&payload=kKnZE7OzWfkHmAKdg2ICAgAAAFPQLaBnP3aNEMG-32OS0i8xKNRGAIUVmAASAAAKDkFRVUJCUVlEQlFFQkJR&wp=Y9--wgABcYMKmu1BAAKaPwthlbdjaLQupKeqWQ
IP 178.250.0.129:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /google/auction/notify?profile=14&payload=kKnZE7OzWfkHmAKdg2ICAgAAAFPQLaBnP3aNEMG-32OS0i8xKNRGAIUVmAASAAAKDkFRVUJCUVlEQlFFQkJR&wp=Y9--wgABcYMKmu1BAAKaPwthlbdjaLQupKeqWQ HTTP/1.1
Host: rtb.fr.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server-processing-duration-in-ticks: 344045
date: Sun, 05 Feb 2023 14:35:46 GMT
server: Kestrel
content-length: 0
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
rtb.fr.eu.criteo.com/google/auction/notify?profile=14&payload=kKnZE7OzWYMImAKdg2ICAgAAAFPQLaBnP3aNEMG-32O68RiAFtbdxCn2AgASAAAKDkFRVURCUVlCQlFFQkJR&wp=Y9--wgABLk8CO8sVAATyK-fh8WHwf-KN3upeSg
178.250.0.129200 OK 0 B URL HTTP/2 rtb.fr.eu.criteo.com/google/auction/notify?profile=14&payload=kKnZE7OzWYMImAKdg2ICAgAAAFPQLaBnP3aNEMG-32O68RiAFtbdxCn2AgASAAAKDkFRVURCUVlCQlFFQkJR&wp=Y9--wgABLk8CO8sVAATyK-fh8WHwf-KN3upeSg
IP 178.250.0.129:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /google/auction/notify?profile=14&payload=kKnZE7OzWYMImAKdg2ICAgAAAFPQLaBnP3aNEMG-32O68RiAFtbdxCn2AgASAAAKDkFRVURCUVlCQlFFQkJR&wp=Y9--wgABLk8CO8sVAATyK-fh8WHwf-KN3upeSg HTTP/1.1
Host: rtb.fr.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server-processing-duration-in-ticks: 270435
date: Sun, 05 Feb 2023 14:35:46 GMT
server: Kestrel
content-length: 0
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
rtb.fr.eu.criteo.com/google/auction/notify?profile=14&payload=kKnZE7OzWfkHmAKdg2ICAgAAAMqVVLPHDvNCEMG-32OsF0zEQS0Epxw3BgASAAAKDkFRVUJCUVlEQlFFQkJR&wp=Y9--wgABnC4KmuoZAAEuAZtRAfOyuFEmKgWRUQ
178.250.0.129200 OK 0 B URL HTTP/2 rtb.fr.eu.criteo.com/google/auction/notify?profile=14&payload=kKnZE7OzWfkHmAKdg2ICAgAAAMqVVLPHDvNCEMG-32OsF0zEQS0Epxw3BgASAAAKDkFRVUJCUVlEQlFFQkJR&wp=Y9--wgABnC4KmuoZAAEuAZtRAfOyuFEmKgWRUQ
IP 178.250.0.129:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /google/auction/notify?profile=14&payload=kKnZE7OzWfkHmAKdg2ICAgAAAMqVVLPHDvNCEMG-32OsF0zEQS0Epxw3BgASAAAKDkFRVUJCUVlEQlFFQkJR&wp=Y9--wgABnC4KmuoZAAEuAZtRAfOyuFEmKgWRUQ HTTP/1.1
Host: rtb.fr.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server-processing-duration-in-ticks: 176232
date: Sun, 05 Feb 2023 14:35:46 GMT
server: Kestrel
content-length: 0
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 122d09f3c0e479664f7ed8ed3d4dbe74
91a4554bb5ba6a763ba9acbb712e2b57d1a1bd46
fca4655dd725b3d54840da0ab81bb7fafd628b82c56a897a1cd7f647fc4b8200
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3593
Cache-Control: max-age=103764
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 14:35:47 GMT
Etag: "63dea30e-139"
Expires: Mon, 06 Feb 2023 19:25:11 GMT
Last-Modified: Sat, 04 Feb 2023 18:25:18 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 122d09f3c0e479664f7ed8ed3d4dbe74
91a4554bb5ba6a763ba9acbb712e2b57d1a1bd46
fca4655dd725b3d54840da0ab81bb7fafd628b82c56a897a1cd7f647fc4b8200
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3637
Cache-Control: max-age=103808
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 14:35:47 GMT
Etag: "63dea30e-139"
Expires: Mon, 06 Feb 2023 19:25:55 GMT
Last-Modified: Sat, 04 Feb 2023 18:25:18 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 313
static.criteo.net/flash/icon/close_button.svg
178.250.2.130200 OK 308 B URL HTTP/2 static.criteo.net/flash/icon/close_button.svg
IP 178.250.2.130:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with CRLF line terminators
Hash 1bfe2e290ec4440da74a2e2c249eae2b
0b888a3f9e27d1554f2e21d51e7a1c223d00dbd4
8ec89605fe3d580e9539c7b858e8f69ba4e26fe06377ebe04585397de23a7395
GET /flash/icon/close_button.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 14:35:47 GMT
content-type: image/svg+xml
content-length: 308
last-modified: Fri, 14 Feb 2020 13:51:32 GMT
etag: "5e46a5e4-134"
expires: Wed, 31 Jan 2024 14:35:47 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/back_button2.svg
178.250.2.130200 OK 293 B URL HTTP/2 static.criteo.net/flash/icon/back_button2.svg
IP 178.250.2.130:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with CRLF line terminators
Hash d9f776bdc698e1bc9c6a1977218019cd
5763cfb5ac79adf0fa7f03a82bad04eea2dca243
725e869434fef8013208ed4c233d29744f9b363f867dcfb8f23e862880fa699a
GET /flash/icon/back_button2.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 14:35:47 GMT
content-type: image/svg+xml
content-length: 293
last-modified: Thu, 28 Apr 2022 09:09:48 GMT
etag: "626a59dc-125"
expires: Wed, 31 Jan 2024 14:35:47 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 8ddb5d259e709bb28f1667e7cbc77b01
90e7c7052a2ac23eb64ae5ec87103c6f9679d171
9f4610422ce25eb4a56eb6423761d9430d93c0904f499dda7092aa766dc386ec
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2623
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 14:35:47 GMT
Last-Modified: Sun, 05 Feb 2023 13:52:04 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 314
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 8ddb5d259e709bb28f1667e7cbc77b01
90e7c7052a2ac23eb64ae5ec87103c6f9679d171
9f4610422ce25eb4a56eb6423761d9430d93c0904f499dda7092aa766dc386ec
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2608
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 14:35:47 GMT
Last-Modified: Sun, 05 Feb 2023 13:52:19 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 314
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 8ddb5d259e709bb28f1667e7cbc77b01
90e7c7052a2ac23eb64ae5ec87103c6f9679d171
9f4610422ce25eb4a56eb6423761d9430d93c0904f499dda7092aa766dc386ec
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2623
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 14:35:47 GMT
Last-Modified: Sun, 05 Feb 2023 13:52:04 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 314
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 8ddb5d259e709bb28f1667e7cbc77b01
90e7c7052a2ac23eb64ae5ec87103c6f9679d171
9f4610422ce25eb4a56eb6423761d9430d93c0904f499dda7092aa766dc386ec
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2608
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 14:35:47 GMT
Last-Modified: Sun, 05 Feb 2023 13:52:19 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 314
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 8ddb5d259e709bb28f1667e7cbc77b01
90e7c7052a2ac23eb64ae5ec87103c6f9679d171
9f4610422ce25eb4a56eb6423761d9430d93c0904f499dda7092aa766dc386ec
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2623
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 14:35:47 GMT
Last-Modified: Sun, 05 Feb 2023 13:52:04 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 314
pix.eu.criteo.net/img/img?h=556&m=0&partner=12017&q=80&r=0&u=http%3A%2F%2Fstatic.fr.eu.criteo.net%2Fdesign%2Fdt%2F12018%2F220214%2F72055d4d681b4db89c08acff858f1b81_chanti-logo-s.jpeg&v=3&w=196&s=diHEdTCqujYoSHGuW3Z7hdrF
178.250.0.139200 OK 1.3 kB URL HTTP/2 pix.eu.criteo.net/img/img?h=556&m=0&partner=12017&q=80&r=0&u=http%3A%2F%2Fstatic.fr.eu.criteo.net%2Fdesign%2Fdt%2F12018%2F220214%2F72055d4d681b4db89c08acff858f1b81_chanti-logo-s.jpeg&v=3&w=196&s=diHEdTCqujYoSHGuW3Z7hdrF
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 196x196, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 01f33a498f65bf4bb751def8c06a1991
dd3dc1f876dbec906a17869724b8d3284beb37cb
9e92587541f93124197e414774716e7099233aef4b4d56f4d888e9bb649b5362
GET /img/img?h=556&m=0&partner=12017&q=80&r=0&u=http%3A%2F%2Fstatic.fr.eu.criteo.net%2Fdesign%2Fdt%2F12018%2F220214%2F72055d4d681b4db89c08acff858f1b81_chanti-logo-s.jpeg&v=3&w=196&s=diHEdTCqujYoSHGuW3Z7hdrF HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=29780891
expires: Tue, 16 Jan 2024 07:03:59 GMT
date: Sun, 05 Feb 2023 14:35:46 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 1298
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ads.eu.criteo.com/delivery/r/afr.php?z=Y9--wgABLSQCO8saAAw94W9SKzNXofNOQQ-5KA&u=%7CaCyLL8vY83ViC2X0KfwkoA8x9ADWIQX0JAhK4ZrAWEQ%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_AM8iEE4GHx4XAZ8-c9e5LlJfMjehYPJbM0j2hknANCpMoZ3wmmJmKy4edXcBJvLsRUTlqRZ6JZ6eddsu92anmzHVken2GKy5PSENgHh0faFh-tvnsrispje6sYVu2V7Qj5dKKvKdaQYiTIwHTfFCjCvDFgPmqi4RzPRerV-V_OhiNjPIguhZUdFwBjAiPpcsJg_VCkyyvPqoE46KzRCZ3GWjG6mbXBf1BePyIbQr-VdnOkNlvCkMuRDs_9Rg7bgZMEisjnuNpGK6TAvakLb8a9UkT5AT5CAXjEyZwprpBsx8jMP1yBBmSUGDWwIBGFRK1R7vWU-4YCqeiin44hhDUe0CIcj36aRtIW1ZEIX5AKFPlT2CQFt6H3VsNwOqUjpXju55vyv1ZK0QB1_GiL1T6AadCSClaIQy_KthUskEmFrtxmtuGAia4pnm_oZQgDKfI6pYN0PEfhks0l2hXl4qBoAv0Nx1mZrvV3BGWR731aGlaXnw3mFCUEjdHWK-g2m5m-2AqUy5OWAR2lAJMwVqZTdYovtAU7yQeXVyA-WQwPaOHmRYfgioQew&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCWJ_zwr7fY6TaBJqW78EP4fuwEMme0rFcxbKY93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNTk4NTg4ODgwMDQ0MzY5OMgBCakC3nDN8XAcsj6oAwGqBIECT9Djzw9Pk5RV_J6Yjkro6rJO8MlQ9OQHijlSdF6088Or_cDBNT_j2gDaiHd8llsfrDZs8BEpngv7X5CcThIfi0QPs9Hqbsel1deAro7Z0MLVAJ6LAI-ttiAS8RQJxd85rY5DX79Vy71hdvwUgLD0l1UIOtizmIeWZzcjV7Xh7y0nBSXCf3UjxaOBsYi6_HwdOXkTgVHgyy1jn7BDhCgmOElCFQVyH32D9E6CGMDq_dx-sFssDzl7pfo_s4ZnSgCN34e5cqgnYZwjuMxWsbn39SkUA69SqSrt0lJ0SS-sP7PNE6pfx_DoIGANeP-FCCvz_1IfydeEyoq4cIiFk_VZgIKABvrv4u2Tr7XwUaAGIagHpr4bqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQLYBwDSCA8IgOGAcBABMgLrAjoCgED6CwIIAYAMAdAVAYAXAQ%26num%3D1%26sig%3DAOD64_1VLBrxtrjfZc8gzZmp2RB7N2SyyQ%26client%3Dca-pub-5985888800443698%26adurl%3D
178.250.0.138200 OK 84 kB URL HTTP/2 ads.eu.criteo.com/delivery/r/afr.php?z=Y9--wgABLSQCO8saAAw94W9SKzNXofNOQQ-5KA&u=%7CaCyLL8vY83ViC2X0KfwkoA8x9ADWIQX0JAhK4ZrAWEQ%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_AM8iEE4GHx4XAZ8-c9e5LlJfMjehYPJbM0j2hknANCpMoZ3wmmJmKy4edXcBJvLsRUTlqRZ6JZ6eddsu92anmzHVken2GKy5PSENgHh0faFh-tvnsrispje6sYVu2V7Qj5dKKvKdaQYiTIwHTfFCjCvDFgPmqi4RzPRerV-V_OhiNjPIguhZUdFwBjAiPpcsJg_VCkyyvPqoE46KzRCZ3GWjG6mbXBf1BePyIbQr-VdnOkNlvCkMuRDs_9Rg7bgZMEisjnuNpGK6TAvakLb8a9UkT5AT5CAXjEyZwprpBsx8jMP1yBBmSUGDWwIBGFRK1R7vWU-4YCqeiin44hhDUe0CIcj36aRtIW1ZEIX5AKFPlT2CQFt6H3VsNwOqUjpXju55vyv1ZK0QB1_GiL1T6AadCSClaIQy_KthUskEmFrtxmtuGAia4pnm_oZQgDKfI6pYN0PEfhks0l2hXl4qBoAv0Nx1mZrvV3BGWR731aGlaXnw3mFCUEjdHWK-g2m5m-2AqUy5OWAR2lAJMwVqZTdYovtAU7yQeXVyA-WQwPaOHmRYfgioQew&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCWJ_zwr7fY6TaBJqW78EP4fuwEMme0rFcxbKY93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNTk4NTg4ODgwMDQ0MzY5OMgBCakC3nDN8XAcsj6oAwGqBIECT9Djzw9Pk5RV_J6Yjkro6rJO8MlQ9OQHijlSdF6088Or_cDBNT_j2gDaiHd8llsfrDZs8BEpngv7X5CcThIfi0QPs9Hqbsel1deAro7Z0MLVAJ6LAI-ttiAS8RQJxd85rY5DX79Vy71hdvwUgLD0l1UIOtizmIeWZzcjV7Xh7y0nBSXCf3UjxaOBsYi6_HwdOXkTgVHgyy1jn7BDhCgmOElCFQVyH32D9E6CGMDq_dx-sFssDzl7pfo_s4ZnSgCN34e5cqgnYZwjuMxWsbn39SkUA69SqSrt0lJ0SS-sP7PNE6pfx_DoIGANeP-FCCvz_1IfydeEyoq4cIiFk_VZgIKABvrv4u2Tr7XwUaAGIagHpr4bqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQLYBwDSCA8IgOGAcBABMgLrAjoCgED6CwIIAYAMAdAVAYAXAQ%26num%3D1%26sig%3DAOD64_1VLBrxtrjfZc8gzZmp2RB7N2SyyQ%26client%3Dca-pub-5985888800443698%26adurl%3D
IP 178.250.0.138:0
Hash 72bb186d19a32bce99edaba764b99de7
aed8f1604361d459e7f6eef0f4aa4d0f1df0d22f
67df7a51abd812e994b6f6925b31be2ca27c5cba20e2eaee9a78329f2080efd5
GET /delivery/r/afr.php?z=Y9--wgABLSQCO8saAAw94W9SKzNXofNOQQ-5KA&u=%7CaCyLL8vY83ViC2X0KfwkoA8x9ADWIQX0JAhK4ZrAWEQ%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_AM8iEE4GHx4XAZ8-c9e5LlJfMjehYPJbM0j2hknANCpMoZ3wmmJmKy4edXcBJvLsRUTlqRZ6JZ6eddsu92anmzHVken2GKy5PSENgHh0faFh-tvnsrispje6sYVu2V7Qj5dKKvKdaQYiTIwHTfFCjCvDFgPmqi4RzPRerV-V_OhiNjPIguhZUdFwBjAiPpcsJg_VCkyyvPqoE46KzRCZ3GWjG6mbXBf1BePyIbQr-VdnOkNlvCkMuRDs_9Rg7bgZMEisjnuNpGK6TAvakLb8a9UkT5AT5CAXjEyZwprpBsx8jMP1yBBmSUGDWwIBGFRK1R7vWU-4YCqeiin44hhDUe0CIcj36aRtIW1ZEIX5AKFPlT2CQFt6H3VsNwOqUjpXju55vyv1ZK0QB1_GiL1T6AadCSClaIQy_KthUskEmFrtxmtuGAia4pnm_oZQgDKfI6pYN0PEfhks0l2hXl4qBoAv0Nx1mZrvV3BGWR731aGlaXnw3mFCUEjdHWK-g2m5m-2AqUy5OWAR2lAJMwVqZTdYovtAU7yQeXVyA-WQwPaOHmRYfgioQew&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCWJ_zwr7fY6TaBJqW78EP4fuwEMme0rFcxbKY93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNTk4NTg4ODgwMDQ0MzY5OMgBCakC3nDN8XAcsj6oAwGqBIECT9Djzw9Pk5RV_J6Yjkro6rJO8MlQ9OQHijlSdF6088Or_cDBNT_j2gDaiHd8llsfrDZs8BEpngv7X5CcThIfi0QPs9Hqbsel1deAro7Z0MLVAJ6LAI-ttiAS8RQJxd85rY5DX79Vy71hdvwUgLD0l1UIOtizmIeWZzcjV7Xh7y0nBSXCf3UjxaOBsYi6_HwdOXkTgVHgyy1jn7BDhCgmOElCFQVyH32D9E6CGMDq_dx-sFssDzl7pfo_s4ZnSgCN34e5cqgnYZwjuMxWsbn39SkUA69SqSrt0lJ0SS-sP7PNE6pfx_DoIGANeP-FCCvz_1IfydeEyoq4cIiFk_VZgIKABvrv4u2Tr7XwUaAGIagHpr4bqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQLYBwDSCA8IgOGAcBABMgLrAjoCgED6CwIIAYAMAdAVAYAXAQ%26num%3D1%26sig%3DAOD64_1VLBrxtrjfZc8gzZmp2RB7N2SyyQ%26client%3Dca-pub-5985888800443698%26adurl%3D HTTP/1.1
Host: ads.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 14:35:46 GMT
content-type: text/html
server: Kestrel
cache-control: private, max-age=0, no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-max-age: 1000
cross-origin-resource-policy: cross-origin
p3p: CP='CUR ADM OUR NOR STA NID'
report-to: {"endpoints":[{"url":"https://csm.eu.criteo.net/heavyad?cppv=3&cpp=bzuQKqaK136-tDjtfN7-7uGtk_Sg0_gp8EPLDteJQobIy9-6rxBuEIpgFVAZuOLS2lgvq6zg7awKDnZMpEjtut_eFW_xTWn-UAeZelbk9Xuqn5BaR-FBY6RXyyI8dzQ8fYqq3evR8b9np12JoZq2xX0CVEL_ccpjNPyscPbv0xqRVBCJ6nQUadGuesezAI9gkFerKlSZHTZk25j2OwMPYZYCuyqTA9uhAAUxogO_5LiIylRcYVaBMq-_IPMB-H0cNXX7GA"}], "max_age": 86400}
link: <pix.eu.criteo.net>; rel=preconnect; crossorigin, <static.criteo.net>; rel=preconnect; crossorigin
server-processing-duration-in-ticks: 135180714
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F4%2F847191-0_2.jpg%3Fcb%3D5e17ab43346eaea1dc743c63890367ed&v=3&w=800&s=E6qIkh-ImIfwHJYi4W3zfDqo&b=400
178.250.0.139200 OK 10 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F4%2F847191-0_2.jpg%3Fcb%3D5e17ab43346eaea1dc743c63890367ed&v=3&w=800&s=E6qIkh-ImIfwHJYi4W3zfDqo&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x333, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c5b4715a9d1e4acb0731dcb0d3f769af
96c5cd041d2a1d2e5fa6724485b59f508212f7cc
7321820f961282c597519e32076a3dfaefa1a994c8710f61d221f17c91410491
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F4%2F847191-0_2.jpg%3Fcb%3D5e17ab43346eaea1dc743c63890367ed&v=3&w=800&s=E6qIkh-ImIfwHJYi4W3zfDqo&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30134232
expires: Sat, 20 Jan 2024 09:13:00 GMT
date: Sun, 05 Feb 2023 14:35:47 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 10082
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/criteo_logo_2021.svg
178.250.2.130200 OK 8.4 kB URL HTTP/2 static.criteo.net/flash/icon/criteo_logo_2021.svg
IP 178.250.2.130:0
Hash 6eabfadad532110a6c50c3685f9a8853
c9b7bc8340f42d15e5a796c21c919dbfce69405f
7c1d02275f5c296360a9f3ac65e5f79cb88cd652aae89a88ec2d00111a4108de
GET /flash/icon/criteo_logo_2021.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 14:35:47 GMT
content-type: image/svg+xml
last-modified: Thu, 27 May 2021 13:21:59 GMT
etag: W/"60af9cf7-891"
expires: Wed, 31 Jan 2024 14:35:47 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F5%2F15005-1.jpg%3Fcb%3Dc2a426ea4f9181c7f1e48238702ca0ed&v=3&w=800&s=G0NiusOVpgGc5Z7XEdCBWdYs&b=400
178.250.0.139200 OK 9.2 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F5%2F15005-1.jpg%3Fcb%3Dc2a426ea4f9181c7f1e48238702ca0ed&v=3&w=800&s=G0NiusOVpgGc5Z7XEdCBWdYs&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x290, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 81afd5cad70342e7622f32f933fae995
e427ff92ad5f85b712f46d5dd305a630c5741d32
960a15880c444fd90c89c9ada8fc7162fa2a0d50015664b04f7262cbacc64d32
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F5%2F15005-1.jpg%3Fcb%3Dc2a426ea4f9181c7f1e48238702ca0ed&v=3&w=800&s=G0NiusOVpgGc5Z7XEdCBWdYs&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30134222
expires: Sat, 20 Jan 2024 09:12:50 GMT
date: Sun, 05 Feb 2023 14:35:46 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 9190
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ads.eu.criteo.com/delivery/r/afr.php?z=Y9--wgABQjcCO8vAAAg7kuH_QPfZzxa-w-I_3g&u=%7CaCyLL8vY83W9zQT0uWHbbXS7EreprMAckvaZJpO%2BOrs%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_AM8iEE4GHx4XAZ8-c9e5LlJfMjehYPJbM0j2hknANCpMoZ3wmmJmKy4edXcBJvLsRUTlqRZ6JZ6fR7sgySYF8LLQzCiETSHe9g6Y23wbaAMM5JZKS_jeHkNOj3-aBd2e3oqgp0N3XwnRJGbhVME7leJhyQmq0uYwMXxV2JM3NLgwILo-ntb2VH0XBd60RhxJZd_7qkw2VFnfFdiQi6Adxe8q6s_ypw4-vBgy4r8s2v8Zlcn28dJZGRamoHP_Nuh166pkFfC8KAnEE7IITtCEjTDNYfU3wRZe7xPk7CDfhlNjOrvuTrzxptWN5zHgzWV8yrOlf1VBYjb5lzHQjWSwsaCc89Y9y4GXv37rUTgE4erlDGKHQk8FZkRoORY0EHZLitUlEAi0yPGMCNSh4pnQrZDvgIb2SHlueP-7D8vlWU1nlrcqzWA8EGXL_UOy4oVQf_gzi1Edfb12QNPZHHmZTEl8bXAhIMW5EU91a90P78wAuOaYkAYNNx-9feJbXQSifh2gGQY9w7B3v3RhUef9tBJ9tDFyq2jjoBr1fzxhD_1GtIhlTF59xYQ&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCEYtrwr7fY7eEBcCX78EPkvegwA_JntKxXI3w4taTAcCNtwEQASAAYMOEgICYGIIBF2NhLXB1Yi01OTg1ODg4ODAwNDQzNjk4yAEJqQLecM3xcByyPqgDAaoEgQJP0KbBlPYy_6JYAq1VcFQmHSiopMi3oVuTM4oa5iuAJ54m8GSYl0iNA064eGUzdyv_iwSxrsXAv8jiKrqF1sxB1CvceuJ_GZZqcbmWANqFSkMhFvV-o3WAzmtzRcKO7bFsd-SEpzL0S1WIMr0scgjbqugNtXmKbn40G1zhIpa73VhW8OZR6-YrvzRyOwSbsNvY-sMIY7haGmy74PHh0CmpVh1NX34ZxGTKv7QWXaKnpE5FeglauZyklSvwEt-izoAE6h5_cRoFYMAMaEaFKj_i-w0ux6Ii8ps7ZKk3jLW1rYViKTmi35ga9FvbzvrqUzPpISM9o5WEvnOmFYggIc_rdYAG-u_i7ZOvtfBRoAYhqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_1VWlNka8ttOJ5npduzG-E1XYyKXw%26client%3Dca-pub-5985888800443698%26adurl%3D
178.250.0.138200 OK 70 kB URL HTTP/2 ads.eu.criteo.com/delivery/r/afr.php?z=Y9--wgABQjcCO8vAAAg7kuH_QPfZzxa-w-I_3g&u=%7CaCyLL8vY83W9zQT0uWHbbXS7EreprMAckvaZJpO%2BOrs%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_AM8iEE4GHx4XAZ8-c9e5LlJfMjehYPJbM0j2hknANCpMoZ3wmmJmKy4edXcBJvLsRUTlqRZ6JZ6fR7sgySYF8LLQzCiETSHe9g6Y23wbaAMM5JZKS_jeHkNOj3-aBd2e3oqgp0N3XwnRJGbhVME7leJhyQmq0uYwMXxV2JM3NLgwILo-ntb2VH0XBd60RhxJZd_7qkw2VFnfFdiQi6Adxe8q6s_ypw4-vBgy4r8s2v8Zlcn28dJZGRamoHP_Nuh166pkFfC8KAnEE7IITtCEjTDNYfU3wRZe7xPk7CDfhlNjOrvuTrzxptWN5zHgzWV8yrOlf1VBYjb5lzHQjWSwsaCc89Y9y4GXv37rUTgE4erlDGKHQk8FZkRoORY0EHZLitUlEAi0yPGMCNSh4pnQrZDvgIb2SHlueP-7D8vlWU1nlrcqzWA8EGXL_UOy4oVQf_gzi1Edfb12QNPZHHmZTEl8bXAhIMW5EU91a90P78wAuOaYkAYNNx-9feJbXQSifh2gGQY9w7B3v3RhUef9tBJ9tDFyq2jjoBr1fzxhD_1GtIhlTF59xYQ&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCEYtrwr7fY7eEBcCX78EPkvegwA_JntKxXI3w4taTAcCNtwEQASAAYMOEgICYGIIBF2NhLXB1Yi01OTg1ODg4ODAwNDQzNjk4yAEJqQLecM3xcByyPqgDAaoEgQJP0KbBlPYy_6JYAq1VcFQmHSiopMi3oVuTM4oa5iuAJ54m8GSYl0iNA064eGUzdyv_iwSxrsXAv8jiKrqF1sxB1CvceuJ_GZZqcbmWANqFSkMhFvV-o3WAzmtzRcKO7bFsd-SEpzL0S1WIMr0scgjbqugNtXmKbn40G1zhIpa73VhW8OZR6-YrvzRyOwSbsNvY-sMIY7haGmy74PHh0CmpVh1NX34ZxGTKv7QWXaKnpE5FeglauZyklSvwEt-izoAE6h5_cRoFYMAMaEaFKj_i-w0ux6Ii8ps7ZKk3jLW1rYViKTmi35ga9FvbzvrqUzPpISM9o5WEvnOmFYggIc_rdYAG-u_i7ZOvtfBRoAYhqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_1VWlNka8ttOJ5npduzG-E1XYyKXw%26client%3Dca-pub-5985888800443698%26adurl%3D
IP 178.250.0.138:0
Hash db2ea1ca9d61352a93236a73aa3d356e
ee31af283acb8cf0faf916f65f0eeeb219dfe57c
9af9b772d81c83b3c5d8ddc3ed030ad79870dbb7f6ff3e823d0292dda726b9e8
GET /delivery/r/afr.php?z=Y9--wgABQjcCO8vAAAg7kuH_QPfZzxa-w-I_3g&u=%7CaCyLL8vY83W9zQT0uWHbbXS7EreprMAckvaZJpO%2BOrs%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_AM8iEE4GHx4XAZ8-c9e5LlJfMjehYPJbM0j2hknANCpMoZ3wmmJmKy4edXcBJvLsRUTlqRZ6JZ6fR7sgySYF8LLQzCiETSHe9g6Y23wbaAMM5JZKS_jeHkNOj3-aBd2e3oqgp0N3XwnRJGbhVME7leJhyQmq0uYwMXxV2JM3NLgwILo-ntb2VH0XBd60RhxJZd_7qkw2VFnfFdiQi6Adxe8q6s_ypw4-vBgy4r8s2v8Zlcn28dJZGRamoHP_Nuh166pkFfC8KAnEE7IITtCEjTDNYfU3wRZe7xPk7CDfhlNjOrvuTrzxptWN5zHgzWV8yrOlf1VBYjb5lzHQjWSwsaCc89Y9y4GXv37rUTgE4erlDGKHQk8FZkRoORY0EHZLitUlEAi0yPGMCNSh4pnQrZDvgIb2SHlueP-7D8vlWU1nlrcqzWA8EGXL_UOy4oVQf_gzi1Edfb12QNPZHHmZTEl8bXAhIMW5EU91a90P78wAuOaYkAYNNx-9feJbXQSifh2gGQY9w7B3v3RhUef9tBJ9tDFyq2jjoBr1fzxhD_1GtIhlTF59xYQ&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCEYtrwr7fY7eEBcCX78EPkvegwA_JntKxXI3w4taTAcCNtwEQASAAYMOEgICYGIIBF2NhLXB1Yi01OTg1ODg4ODAwNDQzNjk4yAEJqQLecM3xcByyPqgDAaoEgQJP0KbBlPYy_6JYAq1VcFQmHSiopMi3oVuTM4oa5iuAJ54m8GSYl0iNA064eGUzdyv_iwSxrsXAv8jiKrqF1sxB1CvceuJ_GZZqcbmWANqFSkMhFvV-o3WAzmtzRcKO7bFsd-SEpzL0S1WIMr0scgjbqugNtXmKbn40G1zhIpa73VhW8OZR6-YrvzRyOwSbsNvY-sMIY7haGmy74PHh0CmpVh1NX34ZxGTKv7QWXaKnpE5FeglauZyklSvwEt-izoAE6h5_cRoFYMAMaEaFKj_i-w0ux6Ii8ps7ZKk3jLW1rYViKTmi35ga9FvbzvrqUzPpISM9o5WEvnOmFYggIc_rdYAG-u_i7ZOvtfBRoAYhqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_1VWlNka8ttOJ5npduzG-E1XYyKXw%26client%3Dca-pub-5985888800443698%26adurl%3D HTTP/1.1
Host: ads.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 14:35:45 GMT
content-type: text/html
server: Kestrel
cache-control: private, max-age=0, no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-max-age: 1000
cross-origin-resource-policy: cross-origin
p3p: CP='CUR ADM OUR NOR STA NID'
report-to: {"endpoints":[{"url":"https://csm.eu.criteo.net/heavyad?cppv=3&cpp=BHDQoKaK136-tDjtM0qoFzU-yHfhj8nYwxY4c-80E-gkQR6iskuXIYfr7B4UWUzB7f3VN87hZ6Rnu1NaLwEuzU0BNnYT8EVVx6l3piXt7pusskjhxvRMxoUSoSvk6EOFDrRBHXRW0u1cmcRLr4sPCGo0-dqSgfymIfKsDDwK-TzHljFWbPtlq0NzsAHDGBH-c2yX4C5uKyPyZSaxabLDDTtNnjd_aET474-EMVH9OVSWC5rEKMca5Flo7wJgB_oa5b7BSA"}], "max_age": 86400}
link: <pix.eu.criteo.net>; rel=preconnect; crossorigin, <static.criteo.net>; rel=preconnect; crossorigin
server-processing-duration-in-ticks: 177773640
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F0%2F1031500-0.jpg%3Fcb%3Dfe0d2b6980c59e3f6483899515bace23&v=3&w=800&s=LqJHuws34lvM-MIaim6ryf3r&b=400
178.250.0.139200 OK 11 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F0%2F1031500-0.jpg%3Fcb%3Dfe0d2b6980c59e3f6483899515bace23&v=3&w=800&s=LqJHuws34lvM-MIaim6ryf3r&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 306x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1f2ed0900b76ce7a5897b61b684f25c8
fb968773123291b76c9b5c6cc1c59ea9d5efde6c
474e8003d13cb3f8b69e7123205386ac7828686ba5139a43583a1d648e526322
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F0%2F1031500-0.jpg%3Fcb%3Dfe0d2b6980c59e3f6483899515bace23&v=3&w=800&s=LqJHuws34lvM-MIaim6ryf3r&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30136240
expires: Sat, 20 Jan 2024 09:46:28 GMT
date: Sun, 05 Feb 2023 14:35:47 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 10900
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F6%2F3%2F6353-0_1.jpg%3Fcb%3D9e62ef41a9fe4d67fe9ab2bd7379f0b4&v=3&w=800&s=nUS9ddDnR8Vo18chtfRa2XLt&b=400
178.250.0.139200 OK 6.6 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F6%2F3%2F6353-0_1.jpg%3Fcb%3D9e62ef41a9fe4d67fe9ab2bd7379f0b4&v=3&w=800&s=nUS9ddDnR8Vo18chtfRa2XLt&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 06ae262a2aa445904a20058747ea0822
d21523eae0cfa9d1d2543813f8065f8609082a7c
f174662e28f2feebd8ccb7bcd80e91be29e5a206726a04eb5923afb3e554a522
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F6%2F3%2F6353-0_1.jpg%3Fcb%3D9e62ef41a9fe4d67fe9ab2bd7379f0b4&v=3&w=800&s=nUS9ddDnR8Vo18chtfRa2XLt&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30134221
expires: Sat, 20 Jan 2024 09:12:49 GMT
date: Sun, 05 Feb 2023 14:35:47 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 6586
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/design/googlefont/opensans/opensans-700.css
178.250.2.130200 OK 7.6 kB URL HTTP/2 static.criteo.net/design/googlefont/opensans/opensans-700.css
IP 178.250.2.130:0
Hash a1d92a25274194d7d9881953e39e6fea
a9065ec88da47488aba673325a71b2ac5b9e7e8b
486109b02247e065a7419cd135501bf46cefe2fde4b1879d86f9b698aaddde67
GET /design/googlefont/opensans/opensans-700.css HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 14:35:47 GMT
content-type: text/css
last-modified: Thu, 08 Dec 2022 14:11:05 GMT
etag: W/"6391f079-9fe"
expires: Wed, 31 Jan 2024 14:35:47 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F3%2F139100-2.jpg%3Fcb%3D95d0f8f4d75d31b2a07d11e4fb811497&v=3&w=800&s=9K1bWmvQdnozaOWigQ4HarDs&b=400
178.250.0.139200 OK 11 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F3%2F139100-2.jpg%3Fcb%3D95d0f8f4d75d31b2a07d11e4fb811497&v=3&w=800&s=9K1bWmvQdnozaOWigQ4HarDs&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 341x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ea1218da6b26c1eef19a477fdd67a32e
f285d190ed167f19b1db4d2d979d2fbb30cc8344
d86e179e6cb99fd114133f15096f27a203db5c9067eae647500729a50d190cab
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F3%2F139100-2.jpg%3Fcb%3D95d0f8f4d75d31b2a07d11e4fb811497&v=3&w=800&s=9K1bWmvQdnozaOWigQ4HarDs&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30134221
expires: Sat, 20 Jan 2024 09:12:49 GMT
date: Sun, 05 Feb 2023 14:35:47 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 10990
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F3%2F139200-2.jpg%3Fcb%3D72681fb4bd2e49c58fcf92f1c0bac50c&v=3&w=800&s=__jgE6TvBTKSB2zQc7JdJUNa&b=400
178.250.0.139200 OK 11 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F3%2F139200-2.jpg%3Fcb%3D72681fb4bd2e49c58fcf92f1c0bac50c&v=3&w=800&s=__jgE6TvBTKSB2zQc7JdJUNa&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x358, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b4a8b65dd45b5caaf05d7af1a012c211
2d76450cb9247fc5eb904e3d6db3c051c26226ae
bdeedcf8ba166914065e069ca9514b3020cfe22d1239cb8ec86495c301108540
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F3%2F139200-2.jpg%3Fcb%3D72681fb4bd2e49c58fcf92f1c0bac50c&v=3&w=800&s=__jgE6TvBTKSB2zQc7JdJUNa&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30134222
expires: Sat, 20 Jan 2024 09:12:49 GMT
date: Sun, 05 Feb 2023 14:35:47 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 10926
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F7%2F8745306-0.jpg%3Fcb%3D16a3435f560acf8f64365ada01c7a763&v=3&w=800&s=qJfLy8pkadE7DlNEsJ0pVBD0&b=800
178.250.0.139200 OK 7.4 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F7%2F8745306-0.jpg%3Fcb%3D16a3435f560acf8f64365ada01c7a763&v=3&w=800&s=qJfLy8pkadE7DlNEsJ0pVBD0&b=800
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 216x234, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash f81092c6bc9f827bbb7d4a255b0300ee
21017063803692f95720f5b5c20ae59184505abf
51f8e02e34db8b5eabb9b6b7962003d5a13e5caf1a499d4cebc7955fa75c4534
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F7%2F8745306-0.jpg%3Fcb%3D16a3435f560acf8f64365ada01c7a763&v=3&w=800&s=qJfLy8pkadE7DlNEsJ0pVBD0&b=800 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=30134326
expires: Sat, 20 Jan 2024 09:14:33 GMT
date: Sun, 05 Feb 2023 14:35:47 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 7406
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F6%2F3%2F6353-0_1.jpg%3Fcb%3D9e62ef41a9fe4d67fe9ab2bd7379f0b4&v=3&w=800&s=nUS9ddDnR8Vo18chtfRa2XLt&b=800
178.250.0.139200 OK 20 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F6%2F3%2F6353-0_1.jpg%3Fcb%3D9e62ef41a9fe4d67fe9ab2bd7379f0b4&v=3&w=800&s=nUS9ddDnR8Vo18chtfRa2XLt&b=800
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 800x800, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 7aa8efe298b4e8bc0f4f0d4be8809b01
28a960bffff9001e026d53ac4312c0b16676abb4
cea7bd898072dc4e981e943673b74addd48214d66caf2696e91dae235923fd6f
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F6%2F3%2F6353-0_1.jpg%3Fcb%3D9e62ef41a9fe4d67fe9ab2bd7379f0b4&v=3&w=800&s=nUS9ddDnR8Vo18chtfRa2XLt&b=800 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30134221
expires: Sat, 20 Jan 2024 09:12:49 GMT
date: Sun, 05 Feb 2023 14:35:46 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 19784
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F4%2F9%2F49190-0_1.jpg%3Fcb%3Dc9aebdabc35a2d604f9d55f31c2e3879&v=3&w=800&s=hkoJFAzgbPkkMqwWz0OTVKX7&b=400
178.250.0.139200 OK 9.6 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F4%2F9%2F49190-0_1.jpg%3Fcb%3Dc9aebdabc35a2d604f9d55f31c2e3879&v=3&w=800&s=hkoJFAzgbPkkMqwWz0OTVKX7&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x388, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 36c2d387ad4726f27f64f6b6007486bd
a02f629e96a6f012fb8f8652717759293aee7ffb
98ff09c20a03aca044dbe580b73e205ae543f7552fe86e43dcaeffc8c2dbad31
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F4%2F9%2F49190-0_1.jpg%3Fcb%3Dc9aebdabc35a2d604f9d55f31c2e3879&v=3&w=800&s=hkoJFAzgbPkkMqwWz0OTVKX7&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31261550
expires: Fri, 02 Feb 2024 10:21:38 GMT
date: Sun, 05 Feb 2023 14:35:47 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 9596
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F3%2F139200-2.jpg%3Fcb%3D72681fb4bd2e49c58fcf92f1c0bac50c&v=3&w=800&s=__jgE6TvBTKSB2zQc7JdJUNa&b=800
178.250.0.139200 OK 33 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F3%2F139200-2.jpg%3Fcb%3D72681fb4bd2e49c58fcf92f1c0bac50c&v=3&w=800&s=__jgE6TvBTKSB2zQc7JdJUNa&b=800
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 797x714, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 34a7734b568b11e85c7f6b7bb91bfcfb
4f45428408a979d41341efdf137462c3f1ee2845
0fb26044a35262c810afd492ca915e9324c671ac45fec1ac2b377ca9d70dba05
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F3%2F139200-2.jpg%3Fcb%3D72681fb4bd2e49c58fcf92f1c0bac50c&v=3&w=800&s=__jgE6TvBTKSB2zQc7JdJUNa&b=800 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30134222
expires: Sat, 20 Jan 2024 09:12:49 GMT
date: Sun, 05 Feb 2023 14:35:47 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 32826
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F5%2F15005-1.jpg%3Fcb%3Dc2a426ea4f9181c7f1e48238702ca0ed&v=3&w=800&s=G0NiusOVpgGc5Z7XEdCBWdYs&b=800
178.250.0.139200 OK 22 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F5%2F15005-1.jpg%3Fcb%3Dc2a426ea4f9181c7f1e48238702ca0ed&v=3&w=800&s=G0NiusOVpgGc5Z7XEdCBWdYs&b=800
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 800x579, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 9f090985797091537c80f9646cec467a
790033fcac2ccaa0902b0f374d3cff048ce63a33
22a7b588eed2bb09d0c3b634b892c0053da6e5ffafe711e454838e99b7c30ee8
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F5%2F15005-1.jpg%3Fcb%3Dc2a426ea4f9181c7f1e48238702ca0ed&v=3&w=800&s=G0NiusOVpgGc5Z7XEdCBWdYs&b=800 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=30134222
expires: Sat, 20 Jan 2024 09:12:50 GMT
date: Sun, 05 Feb 2023 14:35:46 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 21786
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F4%2F847191-0_2.jpg%3Fcb%3D5e17ab43346eaea1dc743c63890367ed&v=3&w=800&s=E6qIkh-ImIfwHJYi4W3zfDqo&b=800
178.250.0.139200 OK 25 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F4%2F847191-0_2.jpg%3Fcb%3D5e17ab43346eaea1dc743c63890367ed&v=3&w=800&s=E6qIkh-ImIfwHJYi4W3zfDqo&b=800
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 792x659, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b5c62737d4a9d98fb5098ffe21c53547
db6d67e5f354660c6ceab03496d5b87b397c42fd
389ea5a1e37fcbad05b7d90c96def2f7184c4edf2085c8deba39c264b206c9d5
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F4%2F847191-0_2.jpg%3Fcb%3D5e17ab43346eaea1dc743c63890367ed&v=3&w=800&s=E6qIkh-ImIfwHJYi4W3zfDqo&b=800 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=30134232
expires: Sat, 20 Jan 2024 09:13:00 GMT
date: Sun, 05 Feb 2023 14:35:47 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 24784
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F5%2F5%2F55903-0_1_1.jpg%3Fcb%3D9a04e44d34c3a9ce5890155a1367ce1e&v=3&w=800&s=EFoYZ2dRII1mnjGvAEi6wIdc&b=800
178.250.0.139200 OK 34 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F5%2F5%2F55903-0_1_1.jpg%3Fcb%3D9a04e44d34c3a9ce5890155a1367ce1e&v=3&w=800&s=EFoYZ2dRII1mnjGvAEi6wIdc&b=800
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 799x718, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash de1d78c4825abb24127a01ef8cc68374
b9f2a2a4e8ceae9dca32f39e07a97f5653345a3d
a3869adda41f0b890ed0f3f7c15c0cfe88c868e3ea316f5a3c5b26cebbca04ea
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F5%2F5%2F55903-0_1_1.jpg%3Fcb%3D9a04e44d34c3a9ce5890155a1367ce1e&v=3&w=800&s=EFoYZ2dRII1mnjGvAEi6wIdc&b=800 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=30134372
expires: Sat, 20 Jan 2024 09:15:20 GMT
date: Sun, 05 Feb 2023 14:35:47 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 33756
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F4%2F84289-0.jpg%3Fcb%3D1f2bcbbf93d9d76362403be2c3f8a1b0&v=3&w=800&s=Qa3wGWlSxZVwAfooBNiAn84h&b=800
178.250.0.139200 OK 37 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F4%2F84289-0.jpg%3Fcb%3D1f2bcbbf93d9d76362403be2c3f8a1b0&v=3&w=800&s=Qa3wGWlSxZVwAfooBNiAn84h&b=800
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 657x799, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash fc02c6d82f840805c105a8aadeb3d28e
868012e8620307d7e9425f895c045c2e6f14e8db
345299dd992c0cdd6473df4a57da3a79c993d22d71de32b23d2433547cf5db59
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F4%2F84289-0.jpg%3Fcb%3D1f2bcbbf93d9d76362403be2c3f8a1b0&v=3&w=800&s=Qa3wGWlSxZVwAfooBNiAn84h&b=800 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=30161582
expires: Sat, 20 Jan 2024 16:48:50 GMT
date: Sun, 05 Feb 2023 14:35:47 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 36906
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F0%2F103374-0.jpg%3Fcb%3D2d49526fc2cdea583d335e55eaf73e3b&v=3&w=800&s=Wg1PwuRmMfpCQwwscJg7Rzct&b=400
178.250.0.139200 OK 21 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F0%2F103374-0.jpg%3Fcb%3D2d49526fc2cdea583d335e55eaf73e3b&v=3&w=800&s=Wg1PwuRmMfpCQwwscJg7Rzct&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x363, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c869b42702754b98fe93d8a16ea47f0e
513d26d2a9277a85e50e2554b47d988f94fcd0d6
9d95b768d0cec2882ab5bbe9968e128f2d0515784fa51c5383e7510b39f504fd
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F0%2F103374-0.jpg%3Fcb%3D2d49526fc2cdea583d335e55eaf73e3b&v=3&w=800&s=Wg1PwuRmMfpCQwwscJg7Rzct&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30137346
expires: Sat, 20 Jan 2024 10:04:53 GMT
date: Sun, 05 Feb 2023 14:35:47 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 20834
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F6%2F86209-0.jpg%3Fcb%3D878be2f1fa5977fcff2fe1f97060707d&v=3&w=800&s=gRx9rArBUILbHYTqRXZUq_H7&b=400
178.250.0.139200 OK 13 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F6%2F86209-0.jpg%3Fcb%3D878be2f1fa5977fcff2fe1f97060707d&v=3&w=800&s=gRx9rArBUILbHYTqRXZUq_H7&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 349x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 88a8c1c5ae7d4ae05b6fe1dff8efc8fc
7a50ea261ea6c00c578cbcc9d9830746d2cec3d2
2907e6a68db35108827bbeebb3dcac7dbf1e8841cfa3be807e0e67a989290174
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F6%2F86209-0.jpg%3Fcb%3D878be2f1fa5977fcff2fe1f97060707d&v=3&w=800&s=gRx9rArBUILbHYTqRXZUq_H7&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30323174
expires: Mon, 22 Jan 2024 13:42:02 GMT
date: Sun, 05 Feb 2023 14:35:47 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 12636
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F4%2F9%2F49146-0_1.jpg%3Fcb%3D7521e8c4d7c8cb4a09fa34cc1d0f7797&v=3&w=800&s=BCwmnkawmgzQAp2ultOtRSOx&b=400
178.250.0.139200 OK 6.0 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F4%2F9%2F49146-0_1.jpg%3Fcb%3D7521e8c4d7c8cb4a09fa34cc1d0f7797&v=3&w=800&s=BCwmnkawmgzQAp2ultOtRSOx&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x359, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d9eaa67919da6a798d8e026b928b8b3b
1ddec8d68d380ede8a2cf5abe303b5c0c60134e2
a47588a5aa60392891acb4e8867a58ebf44ac3500d8ff6d3b97717718351ccfc
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F4%2F9%2F49146-0_1.jpg%3Fcb%3D7521e8c4d7c8cb4a09fa34cc1d0f7797&v=3&w=800&s=BCwmnkawmgzQAp2ultOtRSOx&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30134572
expires: Sat, 20 Jan 2024 09:18:39 GMT
date: Sun, 05 Feb 2023 14:35:46 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 5970
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F0%2F1033016-0.jpg%3Fcb%3D01f27ea42cafb74b44f21c320fef8841&v=3&w=800&s=eZ9cHoqkQkL2kKHHfaBI9LYB&b=400
178.250.0.139200 OK 15 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F0%2F1033016-0.jpg%3Fcb%3D01f27ea42cafb74b44f21c320fef8841&v=3&w=800&s=eZ9cHoqkQkL2kKHHfaBI9LYB&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x282, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a8e0ac10e16936a32d32197e505c16d2
dc76a6d567491975cf84f7eafcf8e15a72d7866e
7678eee5981d4db5f5032671a8f4b8d30f61f3b56ce6554b62f80cc51d78a35d
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F0%2F1033016-0.jpg%3Fcb%3D01f27ea42cafb74b44f21c320fef8841&v=3&w=800&s=eZ9cHoqkQkL2kKHHfaBI9LYB&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30135504
expires: Sat, 20 Jan 2024 09:34:12 GMT
date: Sun, 05 Feb 2023 14:35:47 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 14644
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F2%2F1%2F21864210-0.jpg%3Fcb%3D007d5e3c235a8b0253e0b7a2b8a91028&v=3&w=800&s=ceu5_rMX2WsClMqQGMNlSsRC&b=400
178.250.0.139200 OK 5.9 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F2%2F1%2F21864210-0.jpg%3Fcb%3D007d5e3c235a8b0253e0b7a2b8a91028&v=3&w=800&s=ceu5_rMX2WsClMqQGMNlSsRC&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 255x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0efd8b5e7fdd024109e09dfbb3044ab7
81b9aaa6b414e86b3a57625f9a3ef1a0cc9bff89
fb471f24bdd2443cc8fca4b1cde0c9234767620433215c8401e9c17cdeb03c8b
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F2%2F1%2F21864210-0.jpg%3Fcb%3D007d5e3c235a8b0253e0b7a2b8a91028&v=3&w=800&s=ceu5_rMX2WsClMqQGMNlSsRC&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30134222
expires: Sat, 20 Jan 2024 09:12:49 GMT
date: Sun, 05 Feb 2023 14:35:47 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 5932
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F3%2F139200-2.jpg%3Fcb%3D72681fb4bd2e49c58fcf92f1c0bac50c&v=3&w=400&s=qYSujOGikjHE-UHkS5PdbWOp&b=400
178.250.0.139200 OK 11 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F3%2F139200-2.jpg%3Fcb%3D72681fb4bd2e49c58fcf92f1c0bac50c&v=3&w=400&s=qYSujOGikjHE-UHkS5PdbWOp&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x358, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b4a8b65dd45b5caaf05d7af1a012c211
2d76450cb9247fc5eb904e3d6db3c051c26226ae
bdeedcf8ba166914065e069ca9514b3020cfe22d1239cb8ec86495c301108540
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F3%2F139200-2.jpg%3Fcb%3D72681fb4bd2e49c58fcf92f1c0bac50c&v=3&w=400&s=qYSujOGikjHE-UHkS5PdbWOp&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30134222
expires: Sat, 20 Jan 2024 09:12:49 GMT
date: Sun, 05 Feb 2023 14:35:47 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 10926
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F4%2F847191-0_2.jpg%3Fcb%3D5e17ab43346eaea1dc743c63890367ed&v=3&w=400&s=VEFqeWT8fK9odcZRCt1KEfKv&b=400
178.250.0.139200 OK 10 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F4%2F847191-0_2.jpg%3Fcb%3D5e17ab43346eaea1dc743c63890367ed&v=3&w=400&s=VEFqeWT8fK9odcZRCt1KEfKv&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x333, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c5b4715a9d1e4acb0731dcb0d3f769af
96c5cd041d2a1d2e5fa6724485b59f508212f7cc
7321820f961282c597519e32076a3dfaefa1a994c8710f61d221f17c91410491
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F4%2F847191-0_2.jpg%3Fcb%3D5e17ab43346eaea1dc743c63890367ed&v=3&w=400&s=VEFqeWT8fK9odcZRCt1KEfKv&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30134232
expires: Sat, 20 Jan 2024 09:13:00 GMT
date: Sun, 05 Feb 2023 14:35:47 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 10082
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F5%2F5%2F55903-0_1_1.jpg%3Fcb%3D9a04e44d34c3a9ce5890155a1367ce1e&v=3&w=400&s=HV1Ts6M8cxYPP--O7XVoeZuT&b=400
178.250.0.139200 OK 13 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F5%2F5%2F55903-0_1_1.jpg%3Fcb%3D9a04e44d34c3a9ce5890155a1367ce1e&v=3&w=400&s=HV1Ts6M8cxYPP--O7XVoeZuT&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x359, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a57b76ddc3e974be786178df14db3499
150a59e98d3ca6a1167160b8832ea6dac9fb0bdd
cf83816a0e4ca3c0fea8204a2d804c57428ffbb35628497957e1f2cd0f703796
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F5%2F5%2F55903-0_1_1.jpg%3Fcb%3D9a04e44d34c3a9ce5890155a1367ce1e&v=3&w=400&s=HV1Ts6M8cxYPP--O7XVoeZuT&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30134372
expires: Sat, 20 Jan 2024 09:15:20 GMT
date: Sun, 05 Feb 2023 14:35:47 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 12814
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F6%2F86209-0.jpg%3Fcb%3D878be2f1fa5977fcff2fe1f97060707d&v=3&w=400&s=7TALjBM89zEztnnYQ2keihQO&b=400
178.250.0.139200 OK 13 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F6%2F86209-0.jpg%3Fcb%3D878be2f1fa5977fcff2fe1f97060707d&v=3&w=400&s=7TALjBM89zEztnnYQ2keihQO&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 349x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 88a8c1c5ae7d4ae05b6fe1dff8efc8fc
7a50ea261ea6c00c578cbcc9d9830746d2cec3d2
2907e6a68db35108827bbeebb3dcac7dbf1e8841cfa3be807e0e67a989290174
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F6%2F86209-0.jpg%3Fcb%3D878be2f1fa5977fcff2fe1f97060707d&v=3&w=400&s=7TALjBM89zEztnnYQ2keihQO&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30323174
expires: Mon, 22 Jan 2024 13:42:02 GMT
date: Sun, 05 Feb 2023 14:35:47 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 12636
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
cat.fr.eu.criteo.com/delivery/lg.php?cppv=3&cpp=2Pb8hDJwH2wcgyAhk9jTPTiOVIS6gQyRtT1T5uLHfVyFaL0CMupidbSfmA8azQRRHASQXi7JGErTTjGJXhQDZ_8_lZILu7d91hD4Gu1VBp4o4DOwyMQgKBNQPxQ2GVLLX43DUAea9rW2TyEf_K322oeYNG-TuogB1fsj1ZhbeXz5QqHtgMO4mPZ947GzieDBYRKyLr5AtbSWHv-OhOvtH70FUei6ZQt20iQuWIuubu7Qf70_BZ5CwmEx_O95Ctti9KcZIBq_anW4ADAIciDEO1onoyAnk-c9ozgjFbGlSMqTdARGBqoLdcfodWZS5qlwqbynCKe3r6s5t9pOJnnRA2nEkGy2s0xrkHO5ZMQYXXtWFqce_Kk0qaxEfuMBjY7PmvQh-N_xmyu_I-JqDWl2hKZ1dmPeVHpGRG42OGui5Z4OzmgmdjS-WXtQNjy91SpBwqxwsA
178.250.0.160200 OK 7.4 kB URL HTTP/2 cat.fr.eu.criteo.com/delivery/lg.php?cppv=3&cpp=2Pb8hDJwH2wcgyAhk9jTPTiOVIS6gQyRtT1T5uLHfVyFaL0CMupidbSfmA8azQRRHASQXi7JGErTTjGJXhQDZ_8_lZILu7d91hD4Gu1VBp4o4DOwyMQgKBNQPxQ2GVLLX43DUAea9rW2TyEf_K322oeYNG-TuogB1fsj1ZhbeXz5QqHtgMO4mPZ947GzieDBYRKyLr5AtbSWHv-OhOvtH70FUei6ZQt20iQuWIuubu7Qf70_BZ5CwmEx_O95Ctti9KcZIBq_anW4ADAIciDEO1onoyAnk-c9ozgjFbGlSMqTdARGBqoLdcfodWZS5qlwqbynCKe3r6s5t9pOJnnRA2nEkGy2s0xrkHO5ZMQYXXtWFqce_Kk0qaxEfuMBjY7PmvQh-N_xmyu_I-JqDWl2hKZ1dmPeVHpGRG42OGui5Z4OzmgmdjS-WXtQNjy91SpBwqxwsA
IP 178.250.0.160:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 0e41d63fce1b3b97b5718a6329b128f5
6df965c90948f79463292dcfdfc6a8f7743bf15f
39eaece6a471f0ccd07aec129e3204ac5e24572ab6173fe1e537117bb719bfe3
GET /delivery/lg.php?cppv=3&cpp=2Pb8hDJwH2wcgyAhk9jTPTiOVIS6gQyRtT1T5uLHfVyFaL0CMupidbSfmA8azQRRHASQXi7JGErTTjGJXhQDZ_8_lZILu7d91hD4Gu1VBp4o4DOwyMQgKBNQPxQ2GVLLX43DUAea9rW2TyEf_K322oeYNG-TuogB1fsj1ZhbeXz5QqHtgMO4mPZ947GzieDBYRKyLr5AtbSWHv-OhOvtH70FUei6ZQt20iQuWIuubu7Qf70_BZ5CwmEx_O95Ctti9KcZIBq_anW4ADAIciDEO1onoyAnk-c9ozgjFbGlSMqTdARGBqoLdcfodWZS5qlwqbynCKe3r6s5t9pOJnnRA2nEkGy2s0xrkHO5ZMQYXXtWFqce_Kk0qaxEfuMBjY7PmvQh-N_xmyu_I-JqDWl2hKZ1dmPeVHpGRG42OGui5Z4OzmgmdjS-WXtQNjy91SpBwqxwsA HTTP/1.1
Host: cat.fr.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 14:35:47 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
server-processing-duration-in-ticks: 3315682
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F6%2F3%2F6353-0_1.jpg%3Fcb%3D9e62ef41a9fe4d67fe9ab2bd7379f0b4&v=3&w=400&s=jpNsu0dSyO7QcDGtVQZlrbPt&b=400
178.250.0.139200 OK 6.6 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F6%2F3%2F6353-0_1.jpg%3Fcb%3D9e62ef41a9fe4d67fe9ab2bd7379f0b4&v=3&w=400&s=jpNsu0dSyO7QcDGtVQZlrbPt&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 06ae262a2aa445904a20058747ea0822
d21523eae0cfa9d1d2543813f8065f8609082a7c
f174662e28f2feebd8ccb7bcd80e91be29e5a206726a04eb5923afb3e554a522
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F6%2F3%2F6353-0_1.jpg%3Fcb%3D9e62ef41a9fe4d67fe9ab2bd7379f0b4&v=3&w=400&s=jpNsu0dSyO7QcDGtVQZlrbPt&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30134221
expires: Sat, 20 Jan 2024 09:12:49 GMT
date: Sun, 05 Feb 2023 14:35:46 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 6586
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F5%2F15005-1.jpg%3Fcb%3Dc2a426ea4f9181c7f1e48238702ca0ed&v=3&w=400&s=u8Ciz1iqYApGTUr33_piMeQ0&b=400
178.250.0.139200 OK 9.2 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F5%2F15005-1.jpg%3Fcb%3Dc2a426ea4f9181c7f1e48238702ca0ed&v=3&w=400&s=u8Ciz1iqYApGTUr33_piMeQ0&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x290, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 81afd5cad70342e7622f32f933fae995
e427ff92ad5f85b712f46d5dd305a630c5741d32
960a15880c444fd90c89c9ada8fc7162fa2a0d50015664b04f7262cbacc64d32
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F5%2F15005-1.jpg%3Fcb%3Dc2a426ea4f9181c7f1e48238702ca0ed&v=3&w=400&s=u8Ciz1iqYApGTUr33_piMeQ0&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30134222
expires: Sat, 20 Jan 2024 09:12:50 GMT
date: Sun, 05 Feb 2023 14:35:47 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 9190
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/design/googlefont/opensans/opensans-400-latin.woff2
178.250.2.130200 OK 17 kB URL HTTP/2 static.criteo.net/design/googlefont/opensans/opensans-400-latin.woff2
IP 178.250.2.130:0
File type Web Open Font Format (Version 2), TrueType, length 16740, version 1.0\012- data
Hash e43b535855a4ae53bd5b07a6eeb3bf67
6507312d9491156036316484bf8dc41e8b52ddd9
b34551ae25916c460423b82beb8e0675b27f76a9a2908f18286260fbd6de6681
GET /design/googlefont/opensans/opensans-400-latin.woff2 HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://static.criteo.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 14:35:47 GMT
content-type: text/plain; charset=UTF-8
content-length: 16740
last-modified: Thu, 08 Dec 2022 14:11:03 GMT
etag: "6391f077-4164"
expires: Wed, 31 Jan 2024 14:35:47 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/design/googlefont/opensans/opensans-700-latin.woff2
178.250.2.130200 OK 16 kB URL HTTP/2 static.criteo.net/design/googlefont/opensans/opensans-700-latin.woff2
IP 178.250.2.130:0
File type Web Open Font Format (Version 2), TrueType, length 16372, version 1.0\012- data
Hash e45478d4d6f15dafda1f25d9e0fb5fa1
52cb490cd0ee4442ede034085cda9652b206f91c
d1a17abb1a999842fe425e1a4ace9d90f9c18f3595c21a63d89f0611b90cfd72
GET /design/googlefont/opensans/opensans-700-latin.woff2 HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://static.criteo.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 14:35:47 GMT
content-type: text/plain; charset=UTF-8
content-length: 16372
last-modified: Thu, 08 Dec 2022 14:11:05 GMT
etag: "6391f079-3ff4"
expires: Wed, 31 Jan 2024 14:35:47 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F2%2F7%2F274489-0.jpg%3Fcb%3De830d02f01f5236819bcfc3baf72f880&v=3&w=800&s=MZR0Z9xiLiwa9rFEIU8Tf_iB&b=800
178.250.0.139200 OK 2.3 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F2%2F7%2F274489-0.jpg%3Fcb%3De830d02f01f5236819bcfc3baf72f880&v=3&w=800&s=MZR0Z9xiLiwa9rFEIU8Tf_iB&b=800
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 193x244, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ae51db0612268c43f0eb5305f8eba421
1a11f3c535a76b7f0319b965db62382ff20ee322
b2868f63b76282ade9f67024da07537398f19807894fa8e07381bf1fbf979fba
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F2%2F7%2F274489-0.jpg%3Fcb%3De830d02f01f5236819bcfc3baf72f880&v=3&w=800&s=MZR0Z9xiLiwa9rFEIU8Tf_iB&b=800 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30134367
expires: Sat, 20 Jan 2024 09:15:15 GMT
date: Sun, 05 Feb 2023 14:35:48 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 2250
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F4%2F9%2F49146-0_1.jpg%3Fcb%3D7521e8c4d7c8cb4a09fa34cc1d0f7797&v=3&w=800&s=BCwmnkawmgzQAp2ultOtRSOx&b=800
178.250.0.139200 OK 13 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F4%2F9%2F49146-0_1.jpg%3Fcb%3D7521e8c4d7c8cb4a09fa34cc1d0f7797&v=3&w=800&s=BCwmnkawmgzQAp2ultOtRSOx&b=800
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 798x717, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 3a5043761b5e112584f4374070d48f6f
1abc91c016302e6dc586038bdc5f223297ae11de
b8ac6875686f151eb597ec8888e0a6f3a235295bc8341f4ea573d449e398ddd3
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F4%2F9%2F49146-0_1.jpg%3Fcb%3D7521e8c4d7c8cb4a09fa34cc1d0f7797&v=3&w=800&s=BCwmnkawmgzQAp2ultOtRSOx&b=800 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30134571
expires: Sat, 20 Jan 2024 09:18:39 GMT
date: Sun, 05 Feb 2023 14:35:47 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 13366
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F0%2F1032500-0.jpg%3Fcb%3D2c6663e4199953beb851d3b6f3fa855e&v=3&w=800&s=ufh4PKcHvpOU5nSzjsRdQ9i7&b=800
178.250.0.139200 OK 56 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F0%2F1032500-0.jpg%3Fcb%3D2c6663e4199953beb851d3b6f3fa855e&v=3&w=800&s=ufh4PKcHvpOU5nSzjsRdQ9i7&b=800
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 800x622, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ef3fcece1d72e667a3454e5d200867b6
f8709333e28ae287acdf64921259d07ead4c2b5e
74260b20114fb78ace1a26e4a402527d5edfd3f4ac78d6e7035c8913881fe655
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F0%2F1032500-0.jpg%3Fcb%3D2c6663e4199953beb851d3b6f3fa855e&v=3&w=800&s=ufh4PKcHvpOU5nSzjsRdQ9i7&b=800 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30826729
expires: Sun, 28 Jan 2024 09:34:37 GMT
date: Sun, 05 Feb 2023 14:35:47 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 55456
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F4%2F1433052271-0.jpg%3Fcb%3Dd5f2f63578d688571e5864c0a0c4679c&v=3&w=800&s=ibBd8yZGEyIIjdlGbbBNLR7x&b=800
178.250.0.139200 OK 26 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F4%2F1433052271-0.jpg%3Fcb%3Dd5f2f63578d688571e5864c0a0c4679c&v=3&w=800&s=ibBd8yZGEyIIjdlGbbBNLR7x&b=800
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 506x800, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e6b295ef1a17bf7de0bdb9a344723f45
68382e2b241c8a57d24e0da2037ede5a83c19a64
f4f4f1e7311dbd52ce502a0636036e55f2b4c626ba6087adadde232d4cc59862
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F4%2F1433052271-0.jpg%3Fcb%3Dd5f2f63578d688571e5864c0a0c4679c&v=3&w=800&s=ibBd8yZGEyIIjdlGbbBNLR7x&b=800 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30139338
expires: Sat, 20 Jan 2024 10:38:06 GMT
date: Sun, 05 Feb 2023 14:35:47 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 26092
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F3%2F3%2F333130-0.jpg%3Fcb%3D97723eb32de3804d8aac0d95f524ce07&v=3&w=800&s=JoM-GQPAQ4AmKaaL55epk27z&b=800
178.250.0.139200 OK 73 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F3%2F3%2F333130-0.jpg%3Fcb%3D97723eb32de3804d8aac0d95f524ce07&v=3&w=800&s=JoM-GQPAQ4AmKaaL55epk27z&b=800
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 720x800, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 6a148a2e450d67b3fbbc17a77baee6e2
4759f1d595c98ec36360fda78ed372e074dccbf2
3973bbafab97bb4c965153ac77a1d9ed9f8025c0df08f5536d2bbaaf6a82e2be
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F3%2F3%2F333130-0.jpg%3Fcb%3D97723eb32de3804d8aac0d95f524ce07&v=3&w=800&s=JoM-GQPAQ4AmKaaL55epk27z&b=800 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30163249
expires: Sat, 20 Jan 2024 17:16:37 GMT
date: Sun, 05 Feb 2023 14:35:47 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 72796
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F7%2F9%2F79417-0_1.jpg%3Fcb%3D27cd25b5f1df4e2aa925a12d54dbfacd&v=3&w=800&s=NH0Rlu1-KRyXWNPG8Q76hmSE&b=400
178.250.0.139200 OK 13 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F7%2F9%2F79417-0_1.jpg%3Fcb%3D27cd25b5f1df4e2aa925a12d54dbfacd&v=3&w=800&s=NH0Rlu1-KRyXWNPG8Q76hmSE&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x357, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0512e7556c99e215e550fa74efdb400b
cb8b339cb665ecf5cd24c264365d26d020c76e52
4237009023e1a2ddd97c938882db9911bdc59d37b1328d3ede303557f5b14ce9
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F7%2F9%2F79417-0_1.jpg%3Fcb%3D27cd25b5f1df4e2aa925a12d54dbfacd&v=3&w=800&s=NH0Rlu1-KRyXWNPG8Q76hmSE&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30134495
expires: Sat, 20 Jan 2024 09:17:23 GMT
date: Sun, 05 Feb 2023 14:35:47 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 13306
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
cat.fr.eu.criteo.com/delivery/lg.php?cppv=3&cpp=ItMwijJwH2wcgyAhk9jTPTiOVIRPQCXFgrBgC1XCjhNiL1YS4qtkOxSt6uHgynHWrqDGTn_yuM-ODVrsa6n2eE9zk-gRuceINFo7xIFFB4AS__8CDreWHIhXoP_W-OB71dUskuLRXha_gImUiPAO4h5v7LMwdAoxpCkB1Kf9Qihw2OPrLRuKAu1ZB7UQOXkoMBXWEbYWItn4heAkeSWoGuUakP6x4hMR5qY_pQMBx4JuddVsh-RzZRoY8HsLNKfI9oDLbTBMODzaxo3u6TdxbKVHi6mtioK1iPs2prLpQWtqAn-P9HDUUTiA_yLBH_IWQm6wEwDFYqfu6sompCmqDBdBAe36xyLhYLFRiqXKAMkE_jEK3azY9bDTHKfOmSkTUTQHMW1tmVtbIARc5ZshzhiM3VqP06TIVVskCbYD9g39MZ-jVjd4TAzp9T8-ykHk6_jQTg
178.250.0.160200 OK 1.9 kB URL HTTP/2 cat.fr.eu.criteo.com/delivery/lg.php?cppv=3&cpp=ItMwijJwH2wcgyAhk9jTPTiOVIRPQCXFgrBgC1XCjhNiL1YS4qtkOxSt6uHgynHWrqDGTn_yuM-ODVrsa6n2eE9zk-gRuceINFo7xIFFB4AS__8CDreWHIhXoP_W-OB71dUskuLRXha_gImUiPAO4h5v7LMwdAoxpCkB1Kf9Qihw2OPrLRuKAu1ZB7UQOXkoMBXWEbYWItn4heAkeSWoGuUakP6x4hMR5qY_pQMBx4JuddVsh-RzZRoY8HsLNKfI9oDLbTBMODzaxo3u6TdxbKVHi6mtioK1iPs2prLpQWtqAn-P9HDUUTiA_yLBH_IWQm6wEwDFYqfu6sompCmqDBdBAe36xyLhYLFRiqXKAMkE_jEK3azY9bDTHKfOmSkTUTQHMW1tmVtbIARc5ZshzhiM3VqP06TIVVskCbYD9g39MZ-jVjd4TAzp9T8-ykHk6_jQTg
IP 178.250.0.160:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 25c7730d61492344845482fbb9868b23
5dd6a1778278935f548b2dadc0f3723b49897fe4
683b7fe7b6d1f96d67f2cdbcb7d1a2f95c98fb26afe2de1501b2ffaac37b431e
GET /delivery/lg.php?cppv=3&cpp=ItMwijJwH2wcgyAhk9jTPTiOVIRPQCXFgrBgC1XCjhNiL1YS4qtkOxSt6uHgynHWrqDGTn_yuM-ODVrsa6n2eE9zk-gRuceINFo7xIFFB4AS__8CDreWHIhXoP_W-OB71dUskuLRXha_gImUiPAO4h5v7LMwdAoxpCkB1Kf9Qihw2OPrLRuKAu1ZB7UQOXkoMBXWEbYWItn4heAkeSWoGuUakP6x4hMR5qY_pQMBx4JuddVsh-RzZRoY8HsLNKfI9oDLbTBMODzaxo3u6TdxbKVHi6mtioK1iPs2prLpQWtqAn-P9HDUUTiA_yLBH_IWQm6wEwDFYqfu6sompCmqDBdBAe36xyLhYLFRiqXKAMkE_jEK3azY9bDTHKfOmSkTUTQHMW1tmVtbIARc5ZshzhiM3VqP06TIVVskCbYD9g39MZ-jVjd4TAzp9T8-ykHk6_jQTg HTTP/1.1
Host: cat.fr.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 14:35:47 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
server-processing-duration-in-ticks: 1683786
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F2%2F7%2F274489-0.jpg%3Fcb%3De830d02f01f5236819bcfc3baf72f880&v=3&w=800&s=MZR0Z9xiLiwa9rFEIU8Tf_iB&b=400
178.250.0.139200 OK 2.3 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F2%2F7%2F274489-0.jpg%3Fcb%3De830d02f01f5236819bcfc3baf72f880&v=3&w=800&s=MZR0Z9xiLiwa9rFEIU8Tf_iB&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 193x244, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ae51db0612268c43f0eb5305f8eba421
1a11f3c535a76b7f0319b965db62382ff20ee322
b2868f63b76282ade9f67024da07537398f19807894fa8e07381bf1fbf979fba
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F2%2F7%2F274489-0.jpg%3Fcb%3De830d02f01f5236819bcfc3baf72f880&v=3&w=800&s=MZR0Z9xiLiwa9rFEIU8Tf_iB&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30134367
expires: Sat, 20 Jan 2024 09:15:15 GMT
date: Sun, 05 Feb 2023 14:35:47 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 2250
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F2%2F6%2F26237-0.jpg%3Fcb%3D31ab42b78b0a77535f7a483d2111ebc1&v=3&w=800&s=K86nxfqGEhw1G0GWbuHxWz1b&b=400
178.250.0.139200 OK 5.7 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F2%2F6%2F26237-0.jpg%3Fcb%3D31ab42b78b0a77535f7a483d2111ebc1&v=3&w=800&s=K86nxfqGEhw1G0GWbuHxWz1b&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 167x250, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 22c9dde9360e22730d6d7fe716851720
e6b2b39957711385fef80a14725ae339c72636f4
6f1d38d103daa6345b07f92d1907a806b6b6bd518a6fce8c1021bc50e6454c76
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F2%2F6%2F26237-0.jpg%3Fcb%3D31ab42b78b0a77535f7a483d2111ebc1&v=3&w=800&s=K86nxfqGEhw1G0GWbuHxWz1b&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30137917
expires: Sat, 20 Jan 2024 10:14:25 GMT
date: Sun, 05 Feb 2023 14:35:47 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 5666
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
cat.fr.eu.criteo.com/delivery/lg.php?cppv=3&cpp=NNa_3TJwH2wcgyAhk9jTPTiOVISPASrVbCbDa94Crr9nSIMYtQPXo-tyFCQvc_rq_nRQbRoCwBnON0RAoTemzRCKPsIXc5JcO5WXn4ZOypawoaDKjIZZU4aI1-JV8DlKX7a50DzNWNoRpgVNYWEz8vsO778RbzfztpespDqwuZYBmiqf4GJINnFdY75lWFfIAvFsrxHQoeUWrt62zlm7t1GuMyazQ6Jd9jb3xxfBLkZss5bdolR2ObjNWavfcYDYSt2gpiGgmwy2eyzfyNBrvY3QukWWNeFH28SRyx0Tp49vCGtMOmX_lqCNyvDdi1jO4YpctjbrDt7-9PkgSbqk8swy5qRki8Z_YsxuQK6UCXC4KRlXT-wO-JpLFp_are_10ulNswDvNSCMmt8x-ZsO-ksrAzse1gARk4uuVlgRdXM51BLK997WsJ1lx415QV144EQwRA
178.250.0.160200 OK 6.8 kB URL HTTP/2 cat.fr.eu.criteo.com/delivery/lg.php?cppv=3&cpp=NNa_3TJwH2wcgyAhk9jTPTiOVISPASrVbCbDa94Crr9nSIMYtQPXo-tyFCQvc_rq_nRQbRoCwBnON0RAoTemzRCKPsIXc5JcO5WXn4ZOypawoaDKjIZZU4aI1-JV8DlKX7a50DzNWNoRpgVNYWEz8vsO778RbzfztpespDqwuZYBmiqf4GJINnFdY75lWFfIAvFsrxHQoeUWrt62zlm7t1GuMyazQ6Jd9jb3xxfBLkZss5bdolR2ObjNWavfcYDYSt2gpiGgmwy2eyzfyNBrvY3QukWWNeFH28SRyx0Tp49vCGtMOmX_lqCNyvDdi1jO4YpctjbrDt7-9PkgSbqk8swy5qRki8Z_YsxuQK6UCXC4KRlXT-wO-JpLFp_are_10ulNswDvNSCMmt8x-ZsO-ksrAzse1gARk4uuVlgRdXM51BLK997WsJ1lx415QV144EQwRA
IP 178.250.0.160:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 4f8ef395adf166ea54625e67b81cb6f8
6d7f30f8e67cc57dd67ad383aa02ea93f8a13326
34bb6dd4028eceaa9e85dbb038d495c72e00aaeb4adb45244a720544f7596bac
GET /delivery/lg.php?cppv=3&cpp=NNa_3TJwH2wcgyAhk9jTPTiOVISPASrVbCbDa94Crr9nSIMYtQPXo-tyFCQvc_rq_nRQbRoCwBnON0RAoTemzRCKPsIXc5JcO5WXn4ZOypawoaDKjIZZU4aI1-JV8DlKX7a50DzNWNoRpgVNYWEz8vsO778RbzfztpespDqwuZYBmiqf4GJINnFdY75lWFfIAvFsrxHQoeUWrt62zlm7t1GuMyazQ6Jd9jb3xxfBLkZss5bdolR2ObjNWavfcYDYSt2gpiGgmwy2eyzfyNBrvY3QukWWNeFH28SRyx0Tp49vCGtMOmX_lqCNyvDdi1jO4YpctjbrDt7-9PkgSbqk8swy5qRki8Z_YsxuQK6UCXC4KRlXT-wO-JpLFp_are_10ulNswDvNSCMmt8x-ZsO-ksrAzse1gARk4uuVlgRdXM51BLK997WsJ1lx415QV144EQwRA HTTP/1.1
Host: cat.fr.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 14:35:47 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
server-processing-duration-in-ticks: 3074345
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F0%2F1032523-0.jpg%3Fcb%3D6fe1a40827187bbff41b069e4007e8f1&v=3&w=800&s=nOx6eeKHvLZvhj7rXQ_fk6xr&b=400
178.250.0.139200 OK 22 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F0%2F1032523-0.jpg%3Fcb%3D6fe1a40827187bbff41b069e4007e8f1&v=3&w=800&s=nOx6eeKHvLZvhj7rXQ_fk6xr&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 379x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 30087ce8e407783eb48dd48ec1653c11
e0694f60e87e1985cb3cb1ed3954c2ceebc3db8e
742db42a1a4e689ee805a0de6f7942130538b0f8e1b3a8ce1d853df285221928
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F0%2F1032523-0.jpg%3Fcb%3D6fe1a40827187bbff41b069e4007e8f1&v=3&w=800&s=nOx6eeKHvLZvhj7rXQ_fk6xr&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30161438
expires: Sat, 20 Jan 2024 16:46:26 GMT
date: Sun, 05 Feb 2023 14:35:47 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 21828
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=gj99I6aK136-tDjtf9gWjrbDMYjIRf4jM9GNlXgwDfCa2Wcm8bjRsf4Jq_3xgW39VV0yTA4fQR4lSrkK_JaxzeZCDvhUEI6lPziI9DLBN43zQ1xbU7GAO0AiNYAxZwiM-DhDPgOKbWlxv_iSIZwEUjKuJe1jx_Hugv8-GHBut4WdKfortdP1QllB4lttPQn4oAF89oRV0AUwXSbDkAWj6-aVqJxProqmbwX70xEfcouwEuFCIRCMAQu0M0iqFSSrnwDVXQ&sds=2&rev=84569&sendBeacon=true
178.250.2.150200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=gj99I6aK136-tDjtf9gWjrbDMYjIRf4jM9GNlXgwDfCa2Wcm8bjRsf4Jq_3xgW39VV0yTA4fQR4lSrkK_JaxzeZCDvhUEI6lPziI9DLBN43zQ1xbU7GAO0AiNYAxZwiM-DhDPgOKbWlxv_iSIZwEUjKuJe1jx_Hugv8-GHBut4WdKfortdP1QllB4lttPQn4oAF89oRV0AUwXSbDkAWj6-aVqJxProqmbwX70xEfcouwEuFCIRCMAQu0M0iqFSSrnwDVXQ&sds=2&rev=84569&sendBeacon=true
IP 178.250.2.150:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=gj99I6aK136-tDjtf9gWjrbDMYjIRf4jM9GNlXgwDfCa2Wcm8bjRsf4Jq_3xgW39VV0yTA4fQR4lSrkK_JaxzeZCDvhUEI6lPziI9DLBN43zQ1xbU7GAO0AiNYAxZwiM-DhDPgOKbWlxv_iSIZwEUjKuJe1jx_Hugv8-GHBut4WdKfortdP1QllB4lttPQn4oAF89oRV0AUwXSbDkAWj6-aVqJxProqmbwX70xEfcouwEuFCIRCMAQu0M0iqFSSrnwDVXQ&sds=2&rev=84569&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 36
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 14:35:47 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
cat.fr.eu.criteo.com/delivery/lg.php?cppv=3&cpp=inxQFjJwH2wcgyAhk9jTPTiOVIQv7WpaE077aM9IVDiHymV3E4EvkjUUFzu0ZKO1BbR_xanfD8HMXui1K0OB2Q-NKShVv3e1Ffl1rY1ODiGzKBC9aMgh-DhnRppVJNE9vPhqbwI53KIK0TGSWYsnfmvF6p79Hh6XFZVqdhY02Eg9mFak2ADH7_PJZxBUNIb9cm1TVQejfEFd-SYYffg5gWgBno3LiEg-CPI6Gy-5pjS5MTYBWvBKw1Qb-wH6aCDVXYaAIOaZ8UKRXQFVM4-fp78dD4m96hmnnEPMrGP_1ZwjT9HF-BtxoR1pkwZVYDbvxgejk-o4_1NGJL6N64_yGFvfYNy4Yk-prHExs0QpJK9fJ_N-qcWQrXvPPpEQ6gW0OXjVo3n-wZeG3PJBswd95deuTvqo4cLUMlKDMyLoBawABcMiaqT1SKXZol-f1XI2Ycv0sw
178.250.0.160200 OK 43 B URL HTTP/2 cat.fr.eu.criteo.com/delivery/lg.php?cppv=3&cpp=inxQFjJwH2wcgyAhk9jTPTiOVIQv7WpaE077aM9IVDiHymV3E4EvkjUUFzu0ZKO1BbR_xanfD8HMXui1K0OB2Q-NKShVv3e1Ffl1rY1ODiGzKBC9aMgh-DhnRppVJNE9vPhqbwI53KIK0TGSWYsnfmvF6p79Hh6XFZVqdhY02Eg9mFak2ADH7_PJZxBUNIb9cm1TVQejfEFd-SYYffg5gWgBno3LiEg-CPI6Gy-5pjS5MTYBWvBKw1Qb-wH6aCDVXYaAIOaZ8UKRXQFVM4-fp78dD4m96hmnnEPMrGP_1ZwjT9HF-BtxoR1pkwZVYDbvxgejk-o4_1NGJL6N64_yGFvfYNy4Yk-prHExs0QpJK9fJ_N-qcWQrXvPPpEQ6gW0OXjVo3n-wZeG3PJBswd95deuTvqo4cLUMlKDMyLoBawABcMiaqT1SKXZol-f1XI2Ycv0sw
IP 178.250.0.160:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /delivery/lg.php?cppv=3&cpp=inxQFjJwH2wcgyAhk9jTPTiOVIQv7WpaE077aM9IVDiHymV3E4EvkjUUFzu0ZKO1BbR_xanfD8HMXui1K0OB2Q-NKShVv3e1Ffl1rY1ODiGzKBC9aMgh-DhnRppVJNE9vPhqbwI53KIK0TGSWYsnfmvF6p79Hh6XFZVqdhY02Eg9mFak2ADH7_PJZxBUNIb9cm1TVQejfEFd-SYYffg5gWgBno3LiEg-CPI6Gy-5pjS5MTYBWvBKw1Qb-wH6aCDVXYaAIOaZ8UKRXQFVM4-fp78dD4m96hmnnEPMrGP_1ZwjT9HF-BtxoR1pkwZVYDbvxgejk-o4_1NGJL6N64_yGFvfYNy4Yk-prHExs0QpJK9fJ_N-qcWQrXvPPpEQ6gW0OXjVo3n-wZeG3PJBswd95deuTvqo4cLUMlKDMyLoBawABcMiaqT1SKXZol-f1XI2Ycv0sw HTTP/1.1
Host: cat.fr.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 14:35:47 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
server-processing-duration-in-ticks: 2936785
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=qtiXNaaK136-tDjtgHgSPoZ3oSgakaFcNBTiTK1HeGDS2Jqx18UOVzvyDAdHHPVED_ZJ1n3ol0bfE7IOmhyiTLwjBnHhV0uGqde82q81Eix4PBxLF5bCPwCiYUHR-UxExifsdUPAuFVbCOctYhwIObINr_llX2i_Djp-kbHHp1qJeQD04jcnlWlIQmJph50-0T-BItcIAeWm1TnWcOFeCJssS_Q4RnEm2MwE1B5rsIW9EcHJxzltxKTuBQiyTzUSq5vG8w&sds=2&rev=84569&sendBeacon=true
178.250.2.150200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=qtiXNaaK136-tDjtgHgSPoZ3oSgakaFcNBTiTK1HeGDS2Jqx18UOVzvyDAdHHPVED_ZJ1n3ol0bfE7IOmhyiTLwjBnHhV0uGqde82q81Eix4PBxLF5bCPwCiYUHR-UxExifsdUPAuFVbCOctYhwIObINr_llX2i_Djp-kbHHp1qJeQD04jcnlWlIQmJph50-0T-BItcIAeWm1TnWcOFeCJssS_Q4RnEm2MwE1B5rsIW9EcHJxzltxKTuBQiyTzUSq5vG8w&sds=2&rev=84569&sendBeacon=true
IP 178.250.2.150:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=qtiXNaaK136-tDjtgHgSPoZ3oSgakaFcNBTiTK1HeGDS2Jqx18UOVzvyDAdHHPVED_ZJ1n3ol0bfE7IOmhyiTLwjBnHhV0uGqde82q81Eix4PBxLF5bCPwCiYUHR-UxExifsdUPAuFVbCOctYhwIObINr_llX2i_Djp-kbHHp1qJeQD04jcnlWlIQmJph50-0T-BItcIAeWm1TnWcOFeCJssS_Q4RnEm2MwE1B5rsIW9EcHJxzltxKTuBQiyTzUSq5vG8w&sds=2&rev=84569&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 36
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 14:35:47 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=tPdztqaK136-tDjtk7Iwins8c3QjVT-6Kbssy4uOQ9SRhjisDohXlY7IAXu6fr_goby_VrU2MSdc8am4-C9DVrGtwKpG6G13rQELtAOAGGK55CpRd5Dan8On9DbUtUFk5yTZZmViDpFFVPQj3V8qqNzMj71hJhmFMXwtaeB7S3EiG9uJcmsGSi6pcNdX7PDFuVin9S63cLFvgUE2jfiAymMJLw3bBeAnCQ7ZzChJcwxCvYYC7saXL5L1ROhWeFsdM0RBUw&sds=2&rev=84569&sendBeacon=true
178.250.2.150200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=tPdztqaK136-tDjtk7Iwins8c3QjVT-6Kbssy4uOQ9SRhjisDohXlY7IAXu6fr_goby_VrU2MSdc8am4-C9DVrGtwKpG6G13rQELtAOAGGK55CpRd5Dan8On9DbUtUFk5yTZZmViDpFFVPQj3V8qqNzMj71hJhmFMXwtaeB7S3EiG9uJcmsGSi6pcNdX7PDFuVin9S63cLFvgUE2jfiAymMJLw3bBeAnCQ7ZzChJcwxCvYYC7saXL5L1ROhWeFsdM0RBUw&sds=2&rev=84569&sendBeacon=true
IP 178.250.2.150:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=tPdztqaK136-tDjtk7Iwins8c3QjVT-6Kbssy4uOQ9SRhjisDohXlY7IAXu6fr_goby_VrU2MSdc8am4-C9DVrGtwKpG6G13rQELtAOAGGK55CpRd5Dan8On9DbUtUFk5yTZZmViDpFFVPQj3V8qqNzMj71hJhmFMXwtaeB7S3EiG9uJcmsGSi6pcNdX7PDFuVin9S63cLFvgUE2jfiAymMJLw3bBeAnCQ7ZzChJcwxCvYYC7saXL5L1ROhWeFsdM0RBUw&sds=2&rev=84569&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 36
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 14:35:47 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=yXQ9u6aK136-tDjtw0JP-jA7aMy5yC1IwMRfzTvJAJWqWgkFeZ8Vco7KC0C_WYlBXhuVD6EGRJN-hT3q2OsV5PLAgywigVzhf9olROnyb33VIY1qYU_YoNt9G4U1RtXuqfXVp4jUjSHhujNeQILXDD8Mj2zwEbAk0FVG8Oj6r6m8pAA21klJdHZtidCZPV50oqiwnCpj2TcEizfRU6ToKZFzUJGUyeb1vqKRuL6gvPWSBhFoATbMXAnrQbOamIVJZpPOwA&sds=2&rev=84569&sendBeacon=true
178.250.2.150200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=yXQ9u6aK136-tDjtw0JP-jA7aMy5yC1IwMRfzTvJAJWqWgkFeZ8Vco7KC0C_WYlBXhuVD6EGRJN-hT3q2OsV5PLAgywigVzhf9olROnyb33VIY1qYU_YoNt9G4U1RtXuqfXVp4jUjSHhujNeQILXDD8Mj2zwEbAk0FVG8Oj6r6m8pAA21klJdHZtidCZPV50oqiwnCpj2TcEizfRU6ToKZFzUJGUyeb1vqKRuL6gvPWSBhFoATbMXAnrQbOamIVJZpPOwA&sds=2&rev=84569&sendBeacon=true
IP 178.250.2.150:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=yXQ9u6aK136-tDjtw0JP-jA7aMy5yC1IwMRfzTvJAJWqWgkFeZ8Vco7KC0C_WYlBXhuVD6EGRJN-hT3q2OsV5PLAgywigVzhf9olROnyb33VIY1qYU_YoNt9G4U1RtXuqfXVp4jUjSHhujNeQILXDD8Mj2zwEbAk0FVG8Oj6r6m8pAA21klJdHZtidCZPV50oqiwnCpj2TcEizfRU6ToKZFzUJGUyeb1vqKRuL6gvPWSBhFoATbMXAnrQbOamIVJZpPOwA&sds=2&rev=84569&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 36
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 14:35:47 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=cMjSvqaK136-tDjtSNUIksHBxOzdxqp_bcXZI6qqO51Stl3AUzRGa0gNHDnbJhC-_hFbdRciuV4K2garwYcOIQmM4NACkOA_JendsTeEj9wvmfvIv-CL3-PJ_UmvZaYUyYTrdW8wtEG1RVQfR9UXHzbMen2jjRre6dDDlPmU7YPcsqdHeVvsthmQuQ3s1jHR3BmMuuFKIQ4NqQbILBf_qYb9ZMF4mTdO7PS7IPTCfdIG1mBeog7R1wW_mrAbylMpCaOWqA&sds=2&rev=84569&sendBeacon=true
178.250.2.150200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=cMjSvqaK136-tDjtSNUIksHBxOzdxqp_bcXZI6qqO51Stl3AUzRGa0gNHDnbJhC-_hFbdRciuV4K2garwYcOIQmM4NACkOA_JendsTeEj9wvmfvIv-CL3-PJ_UmvZaYUyYTrdW8wtEG1RVQfR9UXHzbMen2jjRre6dDDlPmU7YPcsqdHeVvsthmQuQ3s1jHR3BmMuuFKIQ4NqQbILBf_qYb9ZMF4mTdO7PS7IPTCfdIG1mBeog7R1wW_mrAbylMpCaOWqA&sds=2&rev=84569&sendBeacon=true
IP 178.250.2.150:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=cMjSvqaK136-tDjtSNUIksHBxOzdxqp_bcXZI6qqO51Stl3AUzRGa0gNHDnbJhC-_hFbdRciuV4K2garwYcOIQmM4NACkOA_JendsTeEj9wvmfvIv-CL3-PJ_UmvZaYUyYTrdW8wtEG1RVQfR9UXHzbMen2jjRre6dDDlPmU7YPcsqdHeVvsthmQuQ3s1jHR3BmMuuFKIQ4NqQbILBf_qYb9ZMF4mTdO7PS7IPTCfdIG1mBeog7R1wW_mrAbylMpCaOWqA&sds=2&rev=84569&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 36
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 14:35:47 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gda&tv=r20230201&st=env
172.217.21.162200 OK 11 kB URL HTTP/2 pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gda&tv=r20230201&st=env
IP 172.217.21.162:0
File type JSON data\012- , ASCII text, with very long lines (14793), with no line terminators
Hash bf10c3307b62c8d6dfc82af9d6f9116b
dd8cf78539507a8a2ee8d76fba6e461b998ec06f
cde311ff4cac9b9776bb20044211dd31c9ad4222eb3d354917bdb0e692943b54
GET /getconfig/sodar?sv=200&tid=gda&tv=r20230201&st=env HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://shortcutforlinks.blogspot.com
Connection: keep-alive
Referer: http://shortcutforlinks.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
date: Sun, 05 Feb 2023 14:35:48 GMT
server: cafe
content-length: 11166
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=BHDQoKaK136-tDjtM0qoFzU-yHfhj8nYwxY4c-80E-gkQR6iskuXIYfr7B4UWUzB7f3VN87hZ6Rnu1NaLwEuzU0BNnYT8EVVx6l3piXt7pusskjhxvRMxoUSoSvk6EOFDrRBHXRW0u1cmcRLr4sPCGo0-dqSgfymIfKsDDwK-TzHljFWbPtlq0NzsAHDGBH-c2yX4C5uKyPyZSaxabLDDTtNnjd_aET474-EMVH9OVSWC5rEKMca5Flo7wJgB_oa5b7BSA&sds=2&rev=84569&sendBeacon=true
178.250.2.150200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=BHDQoKaK136-tDjtM0qoFzU-yHfhj8nYwxY4c-80E-gkQR6iskuXIYfr7B4UWUzB7f3VN87hZ6Rnu1NaLwEuzU0BNnYT8EVVx6l3piXt7pusskjhxvRMxoUSoSvk6EOFDrRBHXRW0u1cmcRLr4sPCGo0-dqSgfymIfKsDDwK-TzHljFWbPtlq0NzsAHDGBH-c2yX4C5uKyPyZSaxabLDDTtNnjd_aET474-EMVH9OVSWC5rEKMca5Flo7wJgB_oa5b7BSA&sds=2&rev=84569&sendBeacon=true
IP 178.250.2.150:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=BHDQoKaK136-tDjtM0qoFzU-yHfhj8nYwxY4c-80E-gkQR6iskuXIYfr7B4UWUzB7f3VN87hZ6Rnu1NaLwEuzU0BNnYT8EVVx6l3piXt7pusskjhxvRMxoUSoSvk6EOFDrRBHXRW0u1cmcRLr4sPCGo0-dqSgfymIfKsDDwK-TzHljFWbPtlq0NzsAHDGBH-c2yX4C5uKyPyZSaxabLDDTtNnjd_aET474-EMVH9OVSWC5rEKMca5Flo7wJgB_oa5b7BSA&sds=2&rev=84569&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 36
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 14:35:48 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=aw47oqaK136-tDjtslH9Ap1LHEtGyIwDwbtQ0DkgNYqEaaP0pNqCDgTNi4lI3ajNqo89ZTESlDVjDYzrfl824PDhotq5_VqEonoBmgfnK4dKoFfSCmWuv2sqU6fGnvP07Gh4tXVhW0dOtxMBVOI1RjZZrfvsfkj0cIo2i79aAtACPKCzcxuiUTlmteDgVK7WvU8HJvRTlp9mAZolMkKBdB3NjiiWzH7_4lXebhdajOo827NbmqJ18apNfv9BVOu_ZomNCw&sds=2&rev=84569&sendBeacon=true
178.250.2.150200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=aw47oqaK136-tDjtslH9Ap1LHEtGyIwDwbtQ0DkgNYqEaaP0pNqCDgTNi4lI3ajNqo89ZTESlDVjDYzrfl824PDhotq5_VqEonoBmgfnK4dKoFfSCmWuv2sqU6fGnvP07Gh4tXVhW0dOtxMBVOI1RjZZrfvsfkj0cIo2i79aAtACPKCzcxuiUTlmteDgVK7WvU8HJvRTlp9mAZolMkKBdB3NjiiWzH7_4lXebhdajOo827NbmqJ18apNfv9BVOu_ZomNCw&sds=2&rev=84569&sendBeacon=true
IP 178.250.2.150:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=aw47oqaK136-tDjtslH9Ap1LHEtGyIwDwbtQ0DkgNYqEaaP0pNqCDgTNi4lI3ajNqo89ZTESlDVjDYzrfl824PDhotq5_VqEonoBmgfnK4dKoFfSCmWuv2sqU6fGnvP07Gh4tXVhW0dOtxMBVOI1RjZZrfvsfkj0cIo2i79aAtACPKCzcxuiUTlmteDgVK7WvU8HJvRTlp9mAZolMkKBdB3NjiiWzH7_4lXebhdajOo827NbmqJ18apNfv9BVOu_ZomNCw&sds=2&rev=84569&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 36
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 14:35:48 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash a78b06ca527ce7542b24b349e0485d8b
6f5e5126c1c9d40c9ba09d58e1755d2ca39d02ab
bc7dc156ab8b2b33422fff0922e219246eb1d12469d10ac8007416fed41ac473
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 14:35:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api2/aframe
216.58.207.228200 OK 512 B URL HTTP/2 www.google.com/recaptcha/api2/aframe
IP 216.58.207.228:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (783), with no line terminators
Hash d34a9cc76a7faab50d35218e8464bf4f
9bc874ed259a9792b42aa95b47306b7d69412a2c
880cf28b479a7e5cd0d7c5a6ca1444282cbc5b1e471ae39e6a04aebc92318e1b
GET /recaptcha/api2/aframe HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://shortcutforlinks.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Sun, 05 Feb 2023 14:35:48 GMT
date: Sun, 05 Feb 2023 14:35:48 GMT
cache-control: private, max-age=300
content-type: text/html; charset=utf-8
content-security-policy: script-src 'nonce-n_6kOo2AEOQAwEM9Ti2vtA' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 512
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
rtb.nl.eu.criteo.com/google/auction/notify?profile=14&payload=kKnZE7OzWe0HfJ2DYgICAAAAlQyZ6o-lgSwQwb7fYwispDpLaGsLnY7nABIAAAoOQVFVREFnWUJBZ0VCQWc&wp=Y9--wgAAsPACO8v3AATMJ9KWK4mRU9z9rr_tVA
178.250.2.129200 OK 0 B URL HTTP/2 rtb.nl.eu.criteo.com/google/auction/notify?profile=14&payload=kKnZE7OzWe0HfJ2DYgICAAAAlQyZ6o-lgSwQwb7fYwispDpLaGsLnY7nABIAAAoOQVFVREFnWUJBZ0VCQWc&wp=Y9--wgAAsPACO8v3AATMJ9KWK4mRU9z9rr_tVA
IP 178.250.2.129:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /google/auction/notify?profile=14&payload=kKnZE7OzWe0HfJ2DYgICAAAAlQyZ6o-lgSwQwb7fYwispDpLaGsLnY7nABIAAAoOQVFVREFnWUJBZ0VCQWc&wp=Y9--wgAAsPACO8v3AATMJ9KWK4mRU9z9rr_tVA HTTP/1.1
Host: rtb.nl.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server-processing-duration-in-ticks: 304188
date: Sun, 05 Feb 2023 14:35:48 GMT
server: Kestrel
content-length: 0
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
cat.fr.eu.criteo.com/delivery/lg.php?cppv=3&cpp=rEThDnxNsy-yKT2QHB61fxqL7WhQzXRzP5nZy71z7oua72kUKlhKc4AmFL9YLYABlC_-gSHRxFX681uITHi_zm-tCNsP6EgRVXg2iXVpQW_RdftB8_q0TvANCLMkkXR1sAF7MdNDX5Tie5JP7ltcGNXSAHY1iKXou-_f_JCjT32L2XKob2kcLe863fiwtlQwGgIwMGH3G3OzueE-GHVvf1B-Vf88w5hcBqzrucfZMZcvwWGfYebEk-yXHZUx0skSwflfYlx_GM5XmN2CR0UP86nbnQxHTtRFxkj2d39NVTYQtGWm9ZDcYqAKlyUuccfa1C_I4OAUfrvtRJBcX8lyWCKvSd3krbeYm_3_mXf9xNIcUedU11S7pboWQGRIo4I80vyZBaxVFn1EJRgdsX__9yQS6GxfOVtMkQhE040lpnki_FuWNyGJvDC7QAfejV7LlQYA0A
178.250.0.160200 OK 1.3 kB URL HTTP/2 cat.fr.eu.criteo.com/delivery/lg.php?cppv=3&cpp=rEThDnxNsy-yKT2QHB61fxqL7WhQzXRzP5nZy71z7oua72kUKlhKc4AmFL9YLYABlC_-gSHRxFX681uITHi_zm-tCNsP6EgRVXg2iXVpQW_RdftB8_q0TvANCLMkkXR1sAF7MdNDX5Tie5JP7ltcGNXSAHY1iKXou-_f_JCjT32L2XKob2kcLe863fiwtlQwGgIwMGH3G3OzueE-GHVvf1B-Vf88w5hcBqzrucfZMZcvwWGfYebEk-yXHZUx0skSwflfYlx_GM5XmN2CR0UP86nbnQxHTtRFxkj2d39NVTYQtGWm9ZDcYqAKlyUuccfa1C_I4OAUfrvtRJBcX8lyWCKvSd3krbeYm_3_mXf9xNIcUedU11S7pboWQGRIo4I80vyZBaxVFn1EJRgdsX__9yQS6GxfOVtMkQhE040lpnki_FuWNyGJvDC7QAfejV7LlQYA0A
IP 178.250.0.160:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 526cd7fd34e44accaf173594b583f17e
1ccb0ff7abb057fb345ea7d0704a3d4a9f143944
c3cdd3a322b77d94f03a95e541b4cfded3a84ae563d4ea2226427905e5d8a68e
GET /delivery/lg.php?cppv=3&cpp=rEThDnxNsy-yKT2QHB61fxqL7WhQzXRzP5nZy71z7oua72kUKlhKc4AmFL9YLYABlC_-gSHRxFX681uITHi_zm-tCNsP6EgRVXg2iXVpQW_RdftB8_q0TvANCLMkkXR1sAF7MdNDX5Tie5JP7ltcGNXSAHY1iKXou-_f_JCjT32L2XKob2kcLe863fiwtlQwGgIwMGH3G3OzueE-GHVvf1B-Vf88w5hcBqzrucfZMZcvwWGfYebEk-yXHZUx0skSwflfYlx_GM5XmN2CR0UP86nbnQxHTtRFxkj2d39NVTYQtGWm9ZDcYqAKlyUuccfa1C_I4OAUfrvtRJBcX8lyWCKvSd3krbeYm_3_mXf9xNIcUedU11S7pboWQGRIo4I80vyZBaxVFn1EJRgdsX__9yQS6GxfOVtMkQhE040lpnki_FuWNyGJvDC7QAfejV7LlQYA0A HTTP/1.1
Host: cat.fr.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 14:35:48 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
server-processing-duration-in-ticks: 3093748
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F0%2F1032501-0.jpg%3Fcb%3D567b7974d33b6ba28663f9ca4716abdc&v=3&w=400&s=DV_axv4Xnkjqs0smPMKtgVuP&b=400
178.250.0.139200 OK 20 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F0%2F1032501-0.jpg%3Fcb%3D567b7974d33b6ba28663f9ca4716abdc&v=3&w=400&s=DV_axv4Xnkjqs0smPMKtgVuP&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x242, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d293146827980a7c440ebd21a8863a05
7d31e7cf00ea9da5d5d0125565c084be87c7edd7
4821c694dc79eef008bcde8a5ede9233773b240d79881e384868d55be2861f54
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F0%2F1032501-0.jpg%3Fcb%3D567b7974d33b6ba28663f9ca4716abdc&v=3&w=400&s=DV_axv4Xnkjqs0smPMKtgVuP&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30135615
expires: Sat, 20 Jan 2024 09:36:05 GMT
date: Sun, 05 Feb 2023 14:35:48 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 19562
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F2%2F6%2F262498-0.jpg%3Fcb%3D5e2df1144f24b0fed1742881700ce7bd&v=3&w=400&s=xe_uywCCqMseaWGaAdwj0knh&b=400
178.250.0.139200 OK 2.7 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F2%2F6%2F262498-0.jpg%3Fcb%3D5e2df1144f24b0fed1742881700ce7bd&v=3&w=400&s=xe_uywCCqMseaWGaAdwj0knh&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 250x250, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a6e6c53fd2b269daf1ccaddd4191afd1
685524929203f609cb473114de558be110b7eb3e
bd4ea82cea5cd3db05f77a11ef29af56a53413684cbc1d04e89af476100d8f30
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F2%2F6%2F262498-0.jpg%3Fcb%3D5e2df1144f24b0fed1742881700ce7bd&v=3&w=400&s=xe_uywCCqMseaWGaAdwj0knh&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30135173
expires: Sat, 20 Jan 2024 09:28:43 GMT
date: Sun, 05 Feb 2023 14:35:48 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 2720
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F5%2F3%2F53769-0.jpg%3Fcb%3D8730c282e4350d22f22a8a5489236683&v=3&w=400&s=Pvxum_99aq4B8nDqscOHOQdG&b=400
178.250.0.139200 OK 5.2 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F5%2F3%2F53769-0.jpg%3Fcb%3D8730c282e4350d22f22a8a5489236683&v=3&w=400&s=Pvxum_99aq4B8nDqscOHOQdG&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash f88a4f7d51f4a12700ad280b601c3b9b
1339c0c13529b517bc0b3421551de9a5c0c95468
db74df80d3a951c861858c3e07b0a2c12ea1f0f92fec6ad9e7df451ba6dda602
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F5%2F3%2F53769-0.jpg%3Fcb%3D8730c282e4350d22f22a8a5489236683&v=3&w=400&s=Pvxum_99aq4B8nDqscOHOQdG&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30134476
expires: Sat, 20 Jan 2024 09:17:05 GMT
date: Sun, 05 Feb 2023 14:35:48 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 5188
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F9%2F199351-0.jpg%3Fcb%3Da5cb6b40760e0a297f0b13c8208c16a9&v=3&w=400&s=QmmXnLDII6uLoKU9UteXJgFD&b=400
178.250.0.139200 OK 7.4 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F9%2F199351-0.jpg%3Fcb%3Da5cb6b40760e0a297f0b13c8208c16a9&v=3&w=400&s=QmmXnLDII6uLoKU9UteXJgFD&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 341x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c07b884bbab1ab37c136027d56e530ff
07e5f4e36e95541caa1128f3b47e895d0679adec
e567808c7aa6a7dc77d5316e3b72fb1482823b10404b55fd7a0636ddfca0e428
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F9%2F199351-0.jpg%3Fcb%3Da5cb6b40760e0a297f0b13c8208c16a9&v=3&w=400&s=QmmXnLDII6uLoKU9UteXJgFD&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30156033
expires: Sat, 20 Jan 2024 15:16:23 GMT
date: Sun, 05 Feb 2023 14:35:49 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 7396
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/adchoices_en.svg
178.250.2.130200 OK 9.9 kB URL HTTP/2 static.criteo.net/flash/icon/adchoices_en.svg
IP 178.250.2.130:0
Hash bf890872e7e5c01ae6f3fa37e85cfe41
ba3a9f9212a441d6977f6df86b79451921369bf6
f554ba189d16e81a9d606f041961e00b408bd4bed62c5a75d4775eced4292274
GET /flash/icon/adchoices_en.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 14:35:47 GMT
content-type: image/svg+xml
last-modified: Tue, 11 Feb 2020 14:27:58 GMT
etag: W/"5e42b9ee-759"
expires: Wed, 31 Jan 2024 14:35:47 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F5%2F15003-0_1.jpg%3Fcb%3D7fc2761aebbe1643e4d93e4a31484cc8&v=3&w=400&s=eKxczfGlH7IDT6ct_AGN9Bxq&b=400
178.250.0.139200 OK 10 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F5%2F15003-0_1.jpg%3Fcb%3D7fc2761aebbe1643e4d93e4a31484cc8&v=3&w=400&s=eKxczfGlH7IDT6ct_AGN9Bxq&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x387, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0d63bdaf9264ce65603de0282fbc4e00
9b055432335e40cd7126e9cdcdb95bed8a53c7f2
580660717b633e3d43a1176d5eb5937dd1f8cf17a60388643dce047ca338241b
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F5%2F15003-0_1.jpg%3Fcb%3D7fc2761aebbe1643e4d93e4a31484cc8&v=3&w=400&s=eKxczfGlH7IDT6ct_AGN9Bxq&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30134219
expires: Sat, 20 Jan 2024 09:12:49 GMT
date: Sun, 05 Feb 2023 14:35:48 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 10186
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
cat.fr.eu.criteo.com/delivery/lg.php?cppv=3&cpp=D-KpJTJwH2wcgyAhk9jTPTiOVIRYq17Jt2u0e3EOcUIaUCV3BOg_RkCYMEmeMLFmX1NMKD9OxayFbVCtVcZsAkMV6RU_tG_87Rtnti1J-XU_L8-ZUPRNFqK7vUjO7JtPjfSIyE9k5DBqqNSXj4fDxQhBtgiEJ8kBPUf5bpw_oDdXR2UPQtwQp2CATJntcdakrbY3XMe1N4-Afq0_-JRpR3VKDQUxp7PobmVlkPZWGokja70dkNlhrEQugnazPgH8wDe4nYvL52SjJCVMQ7rAZB2n1HifB4e1BnoNM1Kp2btRlgHL8cC_an9bin1LH9UlRwHnH_uxdhQ9P6XTOgkNms2CeOFfFdjbWgPw2KJug6yavWx8HFy1bGmvfdgOkoChIZ9IkM2-QCRaVpe5jVk43rgt4VgLB0G66W3QxEbtWUJJ7AoBaSn2Otf1jyd7q5Ly-fp55w
178.250.0.160200 OK 5.1 kB URL HTTP/2 cat.fr.eu.criteo.com/delivery/lg.php?cppv=3&cpp=D-KpJTJwH2wcgyAhk9jTPTiOVIRYq17Jt2u0e3EOcUIaUCV3BOg_RkCYMEmeMLFmX1NMKD9OxayFbVCtVcZsAkMV6RU_tG_87Rtnti1J-XU_L8-ZUPRNFqK7vUjO7JtPjfSIyE9k5DBqqNSXj4fDxQhBtgiEJ8kBPUf5bpw_oDdXR2UPQtwQp2CATJntcdakrbY3XMe1N4-Afq0_-JRpR3VKDQUxp7PobmVlkPZWGokja70dkNlhrEQugnazPgH8wDe4nYvL52SjJCVMQ7rAZB2n1HifB4e1BnoNM1Kp2btRlgHL8cC_an9bin1LH9UlRwHnH_uxdhQ9P6XTOgkNms2CeOFfFdjbWgPw2KJug6yavWx8HFy1bGmvfdgOkoChIZ9IkM2-QCRaVpe5jVk43rgt4VgLB0G66W3QxEbtWUJJ7AoBaSn2Otf1jyd7q5Ly-fp55w
IP 178.250.0.160:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 4cc2a59cadb79213be6f3f60b4afc156
f6ae2204f57c64774e8ef1663841e1fe4fba79df
6ba285c1e14d3dcf6d3a02059880d66adf396ed46c3d3fbbd409a1f68625b009
GET /delivery/lg.php?cppv=3&cpp=D-KpJTJwH2wcgyAhk9jTPTiOVIRYq17Jt2u0e3EOcUIaUCV3BOg_RkCYMEmeMLFmX1NMKD9OxayFbVCtVcZsAkMV6RU_tG_87Rtnti1J-XU_L8-ZUPRNFqK7vUjO7JtPjfSIyE9k5DBqqNSXj4fDxQhBtgiEJ8kBPUf5bpw_oDdXR2UPQtwQp2CATJntcdakrbY3XMe1N4-Afq0_-JRpR3VKDQUxp7PobmVlkPZWGokja70dkNlhrEQugnazPgH8wDe4nYvL52SjJCVMQ7rAZB2n1HifB4e1BnoNM1Kp2btRlgHL8cC_an9bin1LH9UlRwHnH_uxdhQ9P6XTOgkNms2CeOFfFdjbWgPw2KJug6yavWx8HFy1bGmvfdgOkoChIZ9IkM2-QCRaVpe5jVk43rgt4VgLB0G66W3QxEbtWUJJ7AoBaSn2Otf1jyd7q5Ly-fp55w HTTP/1.1
Host: cat.fr.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 14:35:46 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
server-processing-duration-in-ticks: 3453673
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F2%2F1%2F21907-0.jpg%3Fcb%3D7f6755809dfa70ed6f14676438483178&v=3&w=400&s=tw1t3GT6DS6zxhxK0PZzTzFM&b=400
178.250.0.139200 OK 28 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F2%2F1%2F21907-0.jpg%3Fcb%3D7f6755809dfa70ed6f14676438483178&v=3&w=400&s=tw1t3GT6DS6zxhxK0PZzTzFM&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x370, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 8424d70f008e7ba89527ac1ba6e7b7f8
8acd7e585e6e3b687a5e312d9f314250f005951e
f5f719984a0e62eca36806f1bd88e85b7f720e705223c4569a2cdf2c86389678
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F2%2F1%2F21907-0.jpg%3Fcb%3D7f6755809dfa70ed6f14676438483178&v=3&w=400&s=tw1t3GT6DS6zxhxK0PZzTzFM&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30134249
expires: Sat, 20 Jan 2024 09:13:19 GMT
date: Sun, 05 Feb 2023 14:35:48 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 27950
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F2%2F3%2F23751-0.jpg%3Fcb%3D8c26a827331395ffb3f596d18b818b81&v=3&w=400&s=i7Mm4-VDkj-kbWNkebVXncjE&b=400
178.250.0.139200 OK 6.6 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F2%2F3%2F23751-0.jpg%3Fcb%3D8c26a827331395ffb3f596d18b818b81&v=3&w=400&s=i7Mm4-VDkj-kbWNkebVXncjE&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 161x249, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e63e335e2047b009a5f26e6c87e42d5e
a0665b13026ea680a7e20f07ceb13e93a1f4058e
0b3e2a91db0f1e3cd00a3c9a4872f627bcab8e7712f8bb1c5b31fe4ad6fcd02f
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F2%2F3%2F23751-0.jpg%3Fcb%3D8c26a827331395ffb3f596d18b818b81&v=3&w=400&s=i7Mm4-VDkj-kbWNkebVXncjE&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30165201
expires: Sat, 20 Jan 2024 17:49:10 GMT
date: Sun, 05 Feb 2023 14:35:48 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 6586
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F3%2F3%2F33020083673-0.jpg%3Fcb%3D7c58ab08d14478765022db01ee575675&v=3&w=400&s=0KdMUSLZRAwxia3oSBDUrbH2&b=400
178.250.0.139200 OK 14 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F3%2F3%2F33020083673-0.jpg%3Fcb%3D7c58ab08d14478765022db01ee575675&v=3&w=400&s=0KdMUSLZRAwxia3oSBDUrbH2&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 389x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c17e6110266a529eaa6ef469767caf6a
40df147c13d3d0eeb9ec7a979bc585d2219ee7cc
a21450fd84a1ae30472bd04d6db13e1904faa0c17ba74166676b36dab57fef0a
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F3%2F3%2F33020083673-0.jpg%3Fcb%3D7c58ab08d14478765022db01ee575675&v=3&w=400&s=0KdMUSLZRAwxia3oSBDUrbH2&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30825647
expires: Sun, 28 Jan 2024 09:16:36 GMT
date: Sun, 05 Feb 2023 14:35:48 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 14284
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F9%2F1992213-0.jpg%3Fcb%3Daf5c6a832b6e1b6b812766d5f253303e&v=3&w=400&s=LmWlZb0A89cRbuiux4-Ant_G&b=400
178.250.0.139200 OK 3.8 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F9%2F1992213-0.jpg%3Fcb%3Daf5c6a832b6e1b6b812766d5f253303e&v=3&w=400&s=LmWlZb0A89cRbuiux4-Ant_G&b=400
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 247x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 211c2b0c32d2ee619ff9bc3c5eefa8b9
93d4cd680716bf4f3f2bb2e5d9e467edb4a7b694
da7ba2946810fbaf3c0addd19b5f5866080ec07d6533696249ca34633a218acf
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F9%2F1992213-0.jpg%3Fcb%3Daf5c6a832b6e1b6b812766d5f253303e&v=3&w=400&s=LmWlZb0A89cRbuiux4-Ant_G&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30393111
expires: Tue, 23 Jan 2024 09:07:41 GMT
date: Sun, 05 Feb 2023 14:35:48 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 3784
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjstnvCxFif6h_V91htUrjWvxtS-B-Ty2Wm3_ErmZ8gxGYwouuz-UQEEE0UT3uQggr9Ma9JXqg51eslpgbQT-YppJTvE&sig=Cg0ArKJSzO14kgGbJFLeEAE&id=lidar2&mcvt=1314&p=0,0,600,160&mtos=1314,1314,1314,1314,1314&tos=1314,0,0,0,0&v=20230201&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=20&adk=3405994698&rs=2&la=0&cr=0&vs=4&r=v&rst=1675607786670&rpt=2400&met=ie&wmsd=0&pbe=0&vae=0&spb=0
172.217.21.162200 OK 42 B URL HTTP/2 pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjstnvCxFif6h_V91htUrjWvxtS-B-Ty2Wm3_ErmZ8gxGYwouuz-UQEEE0UT3uQggr9Ma9JXqg51eslpgbQT-YppJTvE&sig=Cg0ArKJSzO14kgGbJFLeEAE&id=lidar2&mcvt=1314&p=0,0,600,160&mtos=1314,1314,1314,1314,1314&tos=1314,0,0,0,0&v=20230201&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=20&adk=3405994698&rs=2&la=0&cr=0&vs=4&r=v&rst=1675607786670&rpt=2400&met=ie&wmsd=0&pbe=0&vae=0&spb=0
IP 172.217.21.162:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pcs/activeview?xai=AKAOjstnvCxFif6h_V91htUrjWvxtS-B-Ty2Wm3_ErmZ8gxGYwouuz-UQEEE0UT3uQggr9Ma9JXqg51eslpgbQT-YppJTvE&sig=Cg0ArKJSzO14kgGbJFLeEAE&id=lidar2&mcvt=1314&p=0,0,600,160&mtos=1314,1314,1314,1314,1314&tos=1314,0,0,0,0&v=20230201&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=20&adk=3405994698&rs=2&la=0&cr=0&vs=4&r=v&rst=1675607786670&rpt=2400&met=ie&wmsd=0&pbe=0&vae=0&spb=0 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://googleads.g.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: image/gif
date: Sun, 05 Feb 2023 14:35:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjsutZb1_HLw2p7SgoMsbqFegJ6AyWxo-9PGegTf77wnNGky78SxVyu0ofx_B8bloWNiNjbsXDNOLnIQk6vnaadrYSpw&sig=Cg0ArKJSzNF2sCcbZmqMEAE&id=lidar2&mcvt=1320&p=0,0,280,1027&mtos=1320,1320,1320,1320,1320&tos=1320,0,0,0,0&v=20230201&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=20&adk=1839742055&rs=2&la=1&cr=0&vs=4&r=v&rst=1675607786683&rpt=2439&met=ie&wmsd=0&pbe=0&vae=0&spb=0
172.217.21.162200 OK 42 B URL HTTP/2 pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjsutZb1_HLw2p7SgoMsbqFegJ6AyWxo-9PGegTf77wnNGky78SxVyu0ofx_B8bloWNiNjbsXDNOLnIQk6vnaadrYSpw&sig=Cg0ArKJSzNF2sCcbZmqMEAE&id=lidar2&mcvt=1320&p=0,0,280,1027&mtos=1320,1320,1320,1320,1320&tos=1320,0,0,0,0&v=20230201&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=20&adk=1839742055&rs=2&la=1&cr=0&vs=4&r=v&rst=1675607786683&rpt=2439&met=ie&wmsd=0&pbe=0&vae=0&spb=0
IP 172.217.21.162:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pcs/activeview?xai=AKAOjsutZb1_HLw2p7SgoMsbqFegJ6AyWxo-9PGegTf77wnNGky78SxVyu0ofx_B8bloWNiNjbsXDNOLnIQk6vnaadrYSpw&sig=Cg0ArKJSzNF2sCcbZmqMEAE&id=lidar2&mcvt=1320&p=0,0,280,1027&mtos=1320,1320,1320,1320,1320&tos=1320,0,0,0,0&v=20230201&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=20&adk=1839742055&rs=2&la=1&cr=0&vs=4&r=v&rst=1675607786683&rpt=2439&met=ie&wmsd=0&pbe=0&vae=0&spb=0 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://googleads.g.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: image/gif
date: Sun, 05 Feb 2023 14:35:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjsvIkRVGb02xD7NgQXagmIdw-dHqgW0Y_LQ7-bDTWRLjDrfL1t0IO_wdnKWdqjUtg56FqKDVy2NcJ7876gXWVxwLOBTE&sig=Cg0ArKJSzJK9mY1mR3VGEAE&id=lidar2&mcvt=1326&p=0,0,280,1027&mtos=1326,1326,1326,1326,1326&tos=1326,0,0,0,0&v=20230201&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=20&adk=3251790742&rs=2&la=1&cr=0&vs=4&r=v&rst=1675607786675&rpt=2433&met=ie&wmsd=0&pbe=0&vae=0&spb=0
172.217.21.162200 OK 42 B URL HTTP/2 pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjsvIkRVGb02xD7NgQXagmIdw-dHqgW0Y_LQ7-bDTWRLjDrfL1t0IO_wdnKWdqjUtg56FqKDVy2NcJ7876gXWVxwLOBTE&sig=Cg0ArKJSzJK9mY1mR3VGEAE&id=lidar2&mcvt=1326&p=0,0,280,1027&mtos=1326,1326,1326,1326,1326&tos=1326,0,0,0,0&v=20230201&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=20&adk=3251790742&rs=2&la=1&cr=0&vs=4&r=v&rst=1675607786675&rpt=2433&met=ie&wmsd=0&pbe=0&vae=0&spb=0
IP 172.217.21.162:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pcs/activeview?xai=AKAOjsvIkRVGb02xD7NgQXagmIdw-dHqgW0Y_LQ7-bDTWRLjDrfL1t0IO_wdnKWdqjUtg56FqKDVy2NcJ7876gXWVxwLOBTE&sig=Cg0ArKJSzJK9mY1mR3VGEAE&id=lidar2&mcvt=1326&p=0,0,280,1027&mtos=1326,1326,1326,1326,1326&tos=1326,0,0,0,0&v=20230201&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=20&adk=3251790742&rs=2&la=1&cr=0&vs=4&r=v&rst=1675607786675&rpt=2433&met=ie&wmsd=0&pbe=0&vae=0&spb=0 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://googleads.g.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: image/gif
date: Sun, 05 Feb 2023 14:35:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjsv-IuIEOLN3ZaxBYaU8Vzom-3yf0tr-GMCEPFz9eQBcI-mhhWLnxFztft2h-l_htaZNDZaDkn0unSyPxfU98JwX3-k&sig=Cg0ArKJSzIlyb2oYQrDVEAE&id=lidar2&mcvt=1283&p=0,0,280,443&mtos=1283,1283,1283,1283,1283&tos=1283,0,0,0,0&v=20230201&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=20&adk=1636732990&rs=2&la=0&cr=0&vs=4&r=v&rst=1675607786656&rpt=2518&met=ie&wmsd=0&pbe=0&vae=0&spb=0
172.217.21.162200 OK 42 B URL HTTP/2 pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjsv-IuIEOLN3ZaxBYaU8Vzom-3yf0tr-GMCEPFz9eQBcI-mhhWLnxFztft2h-l_htaZNDZaDkn0unSyPxfU98JwX3-k&sig=Cg0ArKJSzIlyb2oYQrDVEAE&id=lidar2&mcvt=1283&p=0,0,280,443&mtos=1283,1283,1283,1283,1283&tos=1283,0,0,0,0&v=20230201&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=20&adk=1636732990&rs=2&la=0&cr=0&vs=4&r=v&rst=1675607786656&rpt=2518&met=ie&wmsd=0&pbe=0&vae=0&spb=0
IP 172.217.21.162:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pcs/activeview?xai=AKAOjsv-IuIEOLN3ZaxBYaU8Vzom-3yf0tr-GMCEPFz9eQBcI-mhhWLnxFztft2h-l_htaZNDZaDkn0unSyPxfU98JwX3-k&sig=Cg0ArKJSzIlyb2oYQrDVEAE&id=lidar2&mcvt=1283&p=0,0,280,443&mtos=1283,1283,1283,1283,1283&tos=1283,0,0,0,0&v=20230201&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=20&adk=1636732990&rs=2&la=0&cr=0&vs=4&r=v&rst=1675607786656&rpt=2518&met=ie&wmsd=0&pbe=0&vae=0&spb=0 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://googleads.g.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: image/gif
date: Sun, 05 Feb 2023 14:35:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=WSkECqaK136-tDjtjAUJyaJxxoVioi41kLG3nrPz-zWtERrf2JsSBNNH0yuleOi4FqKNf2bXG9hWGWxGasxNPSXpOwA3YL5ekh2OQ8d0lg7oXNYDkbBQRc2vuhebU2Q9pH6Js_-RQnFVf08qJW7f_VJRDrhLD1Dp7YCaKvcJ4SsMJuZLIxRBSp9Cslhjn3WRBkxTXq8QHSuNODnd9_c4K7lhmfHyQBVPdMm87jFPM7kdIeIzEvBa7g3Ch5jCi3M6t1CTPw&sds=2&rev=84569&sendBeacon=true
178.250.2.150200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=WSkECqaK136-tDjtjAUJyaJxxoVioi41kLG3nrPz-zWtERrf2JsSBNNH0yuleOi4FqKNf2bXG9hWGWxGasxNPSXpOwA3YL5ekh2OQ8d0lg7oXNYDkbBQRc2vuhebU2Q9pH6Js_-RQnFVf08qJW7f_VJRDrhLD1Dp7YCaKvcJ4SsMJuZLIxRBSp9Cslhjn3WRBkxTXq8QHSuNODnd9_c4K7lhmfHyQBVPdMm87jFPM7kdIeIzEvBa7g3Ch5jCi3M6t1CTPw&sds=2&rev=84569&sendBeacon=true
IP 178.250.2.150:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=WSkECqaK136-tDjtjAUJyaJxxoVioi41kLG3nrPz-zWtERrf2JsSBNNH0yuleOi4FqKNf2bXG9hWGWxGasxNPSXpOwA3YL5ekh2OQ8d0lg7oXNYDkbBQRc2vuhebU2Q9pH6Js_-RQnFVf08qJW7f_VJRDrhLD1Dp7YCaKvcJ4SsMJuZLIxRBSp9Cslhjn3WRBkxTXq8QHSuNODnd9_c4K7lhmfHyQBVPdMm87jFPM7kdIeIzEvBa7g3Ch5jCi3M6t1CTPw&sds=2&rev=84569&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 14:35:49 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=aw47oqaK136-tDjtslH9Ap1LHEtGyIwDwbtQ0DkgNYqEaaP0pNqCDgTNi4lI3ajNqo89ZTESlDVjDYzrfl824PDhotq5_VqEonoBmgfnK4dKoFfSCmWuv2sqU6fGnvP07Gh4tXVhW0dOtxMBVOI1RjZZrfvsfkj0cIo2i79aAtACPKCzcxuiUTlmteDgVK7WvU8HJvRTlp9mAZolMkKBdB3NjiiWzH7_4lXebhdajOo827NbmqJ18apNfv9BVOu_ZomNCw&sds=2&rev=84569&sendBeacon=true
178.250.2.150200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=aw47oqaK136-tDjtslH9Ap1LHEtGyIwDwbtQ0DkgNYqEaaP0pNqCDgTNi4lI3ajNqo89ZTESlDVjDYzrfl824PDhotq5_VqEonoBmgfnK4dKoFfSCmWuv2sqU6fGnvP07Gh4tXVhW0dOtxMBVOI1RjZZrfvsfkj0cIo2i79aAtACPKCzcxuiUTlmteDgVK7WvU8HJvRTlp9mAZolMkKBdB3NjiiWzH7_4lXebhdajOo827NbmqJ18apNfv9BVOu_ZomNCw&sds=2&rev=84569&sendBeacon=true
IP 178.250.2.150:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=aw47oqaK136-tDjtslH9Ap1LHEtGyIwDwbtQ0DkgNYqEaaP0pNqCDgTNi4lI3ajNqo89ZTESlDVjDYzrfl824PDhotq5_VqEonoBmgfnK4dKoFfSCmWuv2sqU6fGnvP07Gh4tXVhW0dOtxMBVOI1RjZZrfvsfkj0cIo2i79aAtACPKCzcxuiUTlmteDgVK7WvU8HJvRTlp9mAZolMkKBdB3NjiiWzH7_4lXebhdajOo827NbmqJ18apNfv9BVOu_ZomNCw&sds=2&rev=84569&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 14:35:49 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=tPdztqaK136-tDjtk7Iwins8c3QjVT-6Kbssy4uOQ9SRhjisDohXlY7IAXu6fr_goby_VrU2MSdc8am4-C9DVrGtwKpG6G13rQELtAOAGGK55CpRd5Dan8On9DbUtUFk5yTZZmViDpFFVPQj3V8qqNzMj71hJhmFMXwtaeB7S3EiG9uJcmsGSi6pcNdX7PDFuVin9S63cLFvgUE2jfiAymMJLw3bBeAnCQ7ZzChJcwxCvYYC7saXL5L1ROhWeFsdM0RBUw&sds=2&rev=84569&sendBeacon=true
178.250.2.150200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=tPdztqaK136-tDjtk7Iwins8c3QjVT-6Kbssy4uOQ9SRhjisDohXlY7IAXu6fr_goby_VrU2MSdc8am4-C9DVrGtwKpG6G13rQELtAOAGGK55CpRd5Dan8On9DbUtUFk5yTZZmViDpFFVPQj3V8qqNzMj71hJhmFMXwtaeB7S3EiG9uJcmsGSi6pcNdX7PDFuVin9S63cLFvgUE2jfiAymMJLw3bBeAnCQ7ZzChJcwxCvYYC7saXL5L1ROhWeFsdM0RBUw&sds=2&rev=84569&sendBeacon=true
IP 178.250.2.150:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=tPdztqaK136-tDjtk7Iwins8c3QjVT-6Kbssy4uOQ9SRhjisDohXlY7IAXu6fr_goby_VrU2MSdc8am4-C9DVrGtwKpG6G13rQELtAOAGGK55CpRd5Dan8On9DbUtUFk5yTZZmViDpFFVPQj3V8qqNzMj71hJhmFMXwtaeB7S3EiG9uJcmsGSi6pcNdX7PDFuVin9S63cLFvgUE2jfiAymMJLw3bBeAnCQ7ZzChJcwxCvYYC7saXL5L1ROhWeFsdM0RBUw&sds=2&rev=84569&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 14:35:49 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=qtiXNaaK136-tDjtgHgSPoZ3oSgakaFcNBTiTK1HeGDS2Jqx18UOVzvyDAdHHPVED_ZJ1n3ol0bfE7IOmhyiTLwjBnHhV0uGqde82q81Eix4PBxLF5bCPwCiYUHR-UxExifsdUPAuFVbCOctYhwIObINr_llX2i_Djp-kbHHp1qJeQD04jcnlWlIQmJph50-0T-BItcIAeWm1TnWcOFeCJssS_Q4RnEm2MwE1B5rsIW9EcHJxzltxKTuBQiyTzUSq5vG8w&sds=2&rev=84569&sendBeacon=true
178.250.2.150200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=qtiXNaaK136-tDjtgHgSPoZ3oSgakaFcNBTiTK1HeGDS2Jqx18UOVzvyDAdHHPVED_ZJ1n3ol0bfE7IOmhyiTLwjBnHhV0uGqde82q81Eix4PBxLF5bCPwCiYUHR-UxExifsdUPAuFVbCOctYhwIObINr_llX2i_Djp-kbHHp1qJeQD04jcnlWlIQmJph50-0T-BItcIAeWm1TnWcOFeCJssS_Q4RnEm2MwE1B5rsIW9EcHJxzltxKTuBQiyTzUSq5vG8w&sds=2&rev=84569&sendBeacon=true
IP 178.250.2.150:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=qtiXNaaK136-tDjtgHgSPoZ3oSgakaFcNBTiTK1HeGDS2Jqx18UOVzvyDAdHHPVED_ZJ1n3ol0bfE7IOmhyiTLwjBnHhV0uGqde82q81Eix4PBxLF5bCPwCiYUHR-UxExifsdUPAuFVbCOctYhwIObINr_llX2i_Djp-kbHHp1qJeQD04jcnlWlIQmJph50-0T-BItcIAeWm1TnWcOFeCJssS_Q4RnEm2MwE1B5rsIW9EcHJxzltxKTuBQiyTzUSq5vG8w&sds=2&rev=84569&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 14:35:50 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=cMjSvqaK136-tDjtSNUIksHBxOzdxqp_bcXZI6qqO51Stl3AUzRGa0gNHDnbJhC-_hFbdRciuV4K2garwYcOIQmM4NACkOA_JendsTeEj9wvmfvIv-CL3-PJ_UmvZaYUyYTrdW8wtEG1RVQfR9UXHzbMen2jjRre6dDDlPmU7YPcsqdHeVvsthmQuQ3s1jHR3BmMuuFKIQ4NqQbILBf_qYb9ZMF4mTdO7PS7IPTCfdIG1mBeog7R1wW_mrAbylMpCaOWqA&sds=2&rev=84569&sendBeacon=true
178.250.2.150200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=cMjSvqaK136-tDjtSNUIksHBxOzdxqp_bcXZI6qqO51Stl3AUzRGa0gNHDnbJhC-_hFbdRciuV4K2garwYcOIQmM4NACkOA_JendsTeEj9wvmfvIv-CL3-PJ_UmvZaYUyYTrdW8wtEG1RVQfR9UXHzbMen2jjRre6dDDlPmU7YPcsqdHeVvsthmQuQ3s1jHR3BmMuuFKIQ4NqQbILBf_qYb9ZMF4mTdO7PS7IPTCfdIG1mBeog7R1wW_mrAbylMpCaOWqA&sds=2&rev=84569&sendBeacon=true
IP 178.250.2.150:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=cMjSvqaK136-tDjtSNUIksHBxOzdxqp_bcXZI6qqO51Stl3AUzRGa0gNHDnbJhC-_hFbdRciuV4K2garwYcOIQmM4NACkOA_JendsTeEj9wvmfvIv-CL3-PJ_UmvZaYUyYTrdW8wtEG1RVQfR9UXHzbMen2jjRre6dDDlPmU7YPcsqdHeVvsthmQuQ3s1jHR3BmMuuFKIQ4NqQbILBf_qYb9ZMF4mTdO7PS7IPTCfdIG1mBeog7R1wW_mrAbylMpCaOWqA&sds=2&rev=84569&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 14:35:49 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjsv15lPn_WyOED72i8inJHYU6yZWPF4i-H3jbGQO8g4_SBYBiRJipq3al9eOkX7xNfh-PA0lxI5ux3G6XGMoDGIDAio&sig=Cg0ArKJSzEZgWbWtfYNpEAE&id=lidar2&mcvt=1016&p=0,0,124,1005&mtos=423,1016,1016,1016,1016&tos=423,593,0,0,0&v=20230201&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=20&adk=1812271801&rs=2&la=0&cr=0&vs=4&r=v&rst=1675607789393&rpt=914&met=ie&wmsd=0&pbe=0&vae=0&spb=0
172.217.21.162200 OK 42 B URL HTTP/2 pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjsv15lPn_WyOED72i8inJHYU6yZWPF4i-H3jbGQO8g4_SBYBiRJipq3al9eOkX7xNfh-PA0lxI5ux3G6XGMoDGIDAio&sig=Cg0ArKJSzEZgWbWtfYNpEAE&id=lidar2&mcvt=1016&p=0,0,124,1005&mtos=423,1016,1016,1016,1016&tos=423,593,0,0,0&v=20230201&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=20&adk=1812271801&rs=2&la=0&cr=0&vs=4&r=v&rst=1675607789393&rpt=914&met=ie&wmsd=0&pbe=0&vae=0&spb=0
IP 172.217.21.162:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pcs/activeview?xai=AKAOjsv15lPn_WyOED72i8inJHYU6yZWPF4i-H3jbGQO8g4_SBYBiRJipq3al9eOkX7xNfh-PA0lxI5ux3G6XGMoDGIDAio&sig=Cg0ArKJSzEZgWbWtfYNpEAE&id=lidar2&mcvt=1016&p=0,0,124,1005&mtos=423,1016,1016,1016,1016&tos=423,593,0,0,0&v=20230201&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=20&adk=1812271801&rs=2&la=0&cr=0&vs=4&r=v&rst=1675607789393&rpt=914&met=ie&wmsd=0&pbe=0&vae=0&spb=0 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://googleads.g.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: image/gif
date: Sun, 05 Feb 2023 14:35:50 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=WSkECqaK136-tDjtjAUJyaJxxoVioi41kLG3nrPz-zWtERrf2JsSBNNH0yuleOi4FqKNf2bXG9hWGWxGasxNPSXpOwA3YL5ekh2OQ8d0lg7oXNYDkbBQRc2vuhebU2Q9pH6Js_-RQnFVf08qJW7f_VJRDrhLD1Dp7YCaKvcJ4SsMJuZLIxRBSp9Cslhjn3WRBkxTXq8QHSuNODnd9_c4K7lhmfHyQBVPdMm87jFPM7kdIeIzEvBa7g3Ch5jCi3M6t1CTPw&sds=2&rev=84569&sendBeacon=true
178.250.2.150200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=WSkECqaK136-tDjtjAUJyaJxxoVioi41kLG3nrPz-zWtERrf2JsSBNNH0yuleOi4FqKNf2bXG9hWGWxGasxNPSXpOwA3YL5ekh2OQ8d0lg7oXNYDkbBQRc2vuhebU2Q9pH6Js_-RQnFVf08qJW7f_VJRDrhLD1Dp7YCaKvcJ4SsMJuZLIxRBSp9Cslhjn3WRBkxTXq8QHSuNODnd9_c4K7lhmfHyQBVPdMm87jFPM7kdIeIzEvBa7g3Ch5jCi3M6t1CTPw&sds=2&rev=84569&sendBeacon=true
IP 178.250.2.150:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=WSkECqaK136-tDjtjAUJyaJxxoVioi41kLG3nrPz-zWtERrf2JsSBNNH0yuleOi4FqKNf2bXG9hWGWxGasxNPSXpOwA3YL5ekh2OQ8d0lg7oXNYDkbBQRc2vuhebU2Q9pH6Js_-RQnFVf08qJW7f_VJRDrhLD1Dp7YCaKvcJ4SsMJuZLIxRBSp9Cslhjn3WRBkxTXq8QHSuNODnd9_c4K7lhmfHyQBVPdMm87jFPM7kdIeIzEvBa7g3Ch5jCi3M6t1CTPw&sds=2&rev=84569&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 14:35:50 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
rawgit.com/Ti9ani8/Ti9ani-WFont/master/Ti9ani-WFont.css
104.21.63.184200 OK 0 B URL HTTP/2 rawgit.com/Ti9ani8/Ti9ani-WFont/master/Ti9ani-WFont.css
IP 104.21.63.184:0
GET /Ti9ani8/Ti9ani-WFont/master/Ti9ani-WFont.css HTTP/1.1
Host: rawgit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://shortcutforlinks.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 14:35:45 GMT
content-type: text/css;charset=utf-8
x-content-type-options: nosniff
x-robots-tag: none
access-control-allow-origin: *
link: <https://rawgit.com/>; rel="sunset"; title="RawGit will soon shut down. Please stop using it."
sunset: Tue, 01 Oct 2019 00:00:00 GMT
etag: W/"715251a6fb7c945db0eca3f0784294f8ab97df5cdc384c6f0730b7548e735804"
cache-control: max-age=3600, s-maxage=300
vary: Accept-Encoding
rawgit-cache-status: STALE
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0YnRP0sdJV7dJkM9iZGCP3%2Bn6u6jRugrM0BRllxNVhXP9x8cKPrwwvviO%2B%2F1oF%2B0YqxC54kzK8ojMeIu43ieJHXM3SwoWde%2BzX5ZqAdz36ZkNhN%2FhpiylDZ0V16k"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; preload
server: cloudflare
cf-ray: 794c5fd56bf6b517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ads.eu.criteo.com/delivery/r/afr.php?z=Y9--wgABL44KmqbGAACix-899YnneYhm7WYj3g&u=%7CaCyLL8vY83XF3cSJYgFz88yA9S%2FUvz2j9UyO9103sWA%3D%7C&c1=d4_i42wbpE2NRhSHxThdXdeadzG9gosNy44cDHK1QYO1j6dIe_y2Y_pBLhwf6cZTEPQDJZ9eRiCyj82E2z39pXQhJDxZS4weGdyfF35BrIRcQFNagmRYQ3xbc8fhXceEKBqypkN257d9CTAcQyvy6TYxKCQmrrKK5vOvDJUrSVFKgNV0BGAS-LquXD28dxFr5Sy89ESWM_HBWRZEjhRkfB-IWiWZIbb1pQ08pVh2PS-0Lo-nBmJ-Bk-Acddgxob32l0a-H6MiLMNEijukO12g8D2hNiO6lmoaR1tMpAw64X6GwOUdoToI5A-9IvRbVtM49rh0jbb3-qs68gps2_QlgDYoUheyTyAPBoUjnoAw2fTDQGYHefczgAOWnLDcx07mr_9OhY0gP3QLd-d9DudL_QRaQ7TkwvKxPx3DHzvgAQbggzsVIUH2LqzF6Sz1Bs5oYvgnpAcj6KEUsBoauzWtSeQDEFR38NT3DCgmcod7oa8Iwtt8LKpThfwZykpsffZ8SnXBtCwlgZZMmV8KxPJnyzQdOM5SR8-Ak_bDGEL1Bf7-cCSVQ9dqfyW6DgrtTxRQlB77DR5Llw&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCL4PJwr7fY47fBMbN6gTHxYKIDMme0rFc9ZHevrEBwI23ARABIABgw4SAgJgYggEXY2EtcHViLTU5ODU4ODg4MDA0NDM2OTjIAQmpAt5wzfFwHLI-qAMBqgT7AU_QGnC8pN6i-lrsa3O6STis7nJzLBwIMmMTyh44D75XYy22ESMk2rPl0I0zu5CL8NsgXUvf7yywBgAUrZGpEMnUNPSVTD7VLvJs7I1gAYG8Idh_UoLcnrWkuXBf0YnEOp2AeHkKcY8txTvEX9SIQf-vE1wNfBs2-AlYJG48LxGILyDwg5ZIIGjAZ8JSdnvRMwy71zAGauMwIzrGnNfm769pdkPdpjPqorWThv0OeQBwm1G30gYUHZMbjliuzx0Gtw0lgO7Gb4pHO56hB-Aar_KF4XFJO8ZFyXRPE84T7Lptbu8f2BzLq2jslwPIVLYpU8jdHh0PI703v2RYgAb67-Ltk6-18FGgBiGoB6a-G6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggPCIDhgHAQATIC6wI6AoBA-gsCCAGADAHQFQGAFwE%26num%3D1%26sig%3DAOD64_2XhvVKG5lvuNtdTgxzA8q0URI3VA%26client%3Dca-pub-5985888800443698%26adurl%3D
178.250.0.138200 OK 0 B URL HTTP/2 ads.eu.criteo.com/delivery/r/afr.php?z=Y9--wgABL44KmqbGAACix-899YnneYhm7WYj3g&u=%7CaCyLL8vY83XF3cSJYgFz88yA9S%2FUvz2j9UyO9103sWA%3D%7C&c1=d4_i42wbpE2NRhSHxThdXdeadzG9gosNy44cDHK1QYO1j6dIe_y2Y_pBLhwf6cZTEPQDJZ9eRiCyj82E2z39pXQhJDxZS4weGdyfF35BrIRcQFNagmRYQ3xbc8fhXceEKBqypkN257d9CTAcQyvy6TYxKCQmrrKK5vOvDJUrSVFKgNV0BGAS-LquXD28dxFr5Sy89ESWM_HBWRZEjhRkfB-IWiWZIbb1pQ08pVh2PS-0Lo-nBmJ-Bk-Acddgxob32l0a-H6MiLMNEijukO12g8D2hNiO6lmoaR1tMpAw64X6GwOUdoToI5A-9IvRbVtM49rh0jbb3-qs68gps2_QlgDYoUheyTyAPBoUjnoAw2fTDQGYHefczgAOWnLDcx07mr_9OhY0gP3QLd-d9DudL_QRaQ7TkwvKxPx3DHzvgAQbggzsVIUH2LqzF6Sz1Bs5oYvgnpAcj6KEUsBoauzWtSeQDEFR38NT3DCgmcod7oa8Iwtt8LKpThfwZykpsffZ8SnXBtCwlgZZMmV8KxPJnyzQdOM5SR8-Ak_bDGEL1Bf7-cCSVQ9dqfyW6DgrtTxRQlB77DR5Llw&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCL4PJwr7fY47fBMbN6gTHxYKIDMme0rFc9ZHevrEBwI23ARABIABgw4SAgJgYggEXY2EtcHViLTU5ODU4ODg4MDA0NDM2OTjIAQmpAt5wzfFwHLI-qAMBqgT7AU_QGnC8pN6i-lrsa3O6STis7nJzLBwIMmMTyh44D75XYy22ESMk2rPl0I0zu5CL8NsgXUvf7yywBgAUrZGpEMnUNPSVTD7VLvJs7I1gAYG8Idh_UoLcnrWkuXBf0YnEOp2AeHkKcY8txTvEX9SIQf-vE1wNfBs2-AlYJG48LxGILyDwg5ZIIGjAZ8JSdnvRMwy71zAGauMwIzrGnNfm769pdkPdpjPqorWThv0OeQBwm1G30gYUHZMbjliuzx0Gtw0lgO7Gb4pHO56hB-Aar_KF4XFJO8ZFyXRPE84T7Lptbu8f2BzLq2jslwPIVLYpU8jdHh0PI703v2RYgAb67-Ltk6-18FGgBiGoB6a-G6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggPCIDhgHAQATIC6wI6AoBA-gsCCAGADAHQFQGAFwE%26num%3D1%26sig%3DAOD64_2XhvVKG5lvuNtdTgxzA8q0URI3VA%26client%3Dca-pub-5985888800443698%26adurl%3D
IP 178.250.0.138:0
GET /delivery/r/afr.php?z=Y9--wgABL44KmqbGAACix-899YnneYhm7WYj3g&u=%7CaCyLL8vY83XF3cSJYgFz88yA9S%2FUvz2j9UyO9103sWA%3D%7C&c1=d4_i42wbpE2NRhSHxThdXdeadzG9gosNy44cDHK1QYO1j6dIe_y2Y_pBLhwf6cZTEPQDJZ9eRiCyj82E2z39pXQhJDxZS4weGdyfF35BrIRcQFNagmRYQ3xbc8fhXceEKBqypkN257d9CTAcQyvy6TYxKCQmrrKK5vOvDJUrSVFKgNV0BGAS-LquXD28dxFr5Sy89ESWM_HBWRZEjhRkfB-IWiWZIbb1pQ08pVh2PS-0Lo-nBmJ-Bk-Acddgxob32l0a-H6MiLMNEijukO12g8D2hNiO6lmoaR1tMpAw64X6GwOUdoToI5A-9IvRbVtM49rh0jbb3-qs68gps2_QlgDYoUheyTyAPBoUjnoAw2fTDQGYHefczgAOWnLDcx07mr_9OhY0gP3QLd-d9DudL_QRaQ7TkwvKxPx3DHzvgAQbggzsVIUH2LqzF6Sz1Bs5oYvgnpAcj6KEUsBoauzWtSeQDEFR38NT3DCgmcod7oa8Iwtt8LKpThfwZykpsffZ8SnXBtCwlgZZMmV8KxPJnyzQdOM5SR8-Ak_bDGEL1Bf7-cCSVQ9dqfyW6DgrtTxRQlB77DR5Llw&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCL4PJwr7fY47fBMbN6gTHxYKIDMme0rFc9ZHevrEBwI23ARABIABgw4SAgJgYggEXY2EtcHViLTU5ODU4ODg4MDA0NDM2OTjIAQmpAt5wzfFwHLI-qAMBqgT7AU_QGnC8pN6i-lrsa3O6STis7nJzLBwIMmMTyh44D75XYy22ESMk2rPl0I0zu5CL8NsgXUvf7yywBgAUrZGpEMnUNPSVTD7VLvJs7I1gAYG8Idh_UoLcnrWkuXBf0YnEOp2AeHkKcY8txTvEX9SIQf-vE1wNfBs2-AlYJG48LxGILyDwg5ZIIGjAZ8JSdnvRMwy71zAGauMwIzrGnNfm769pdkPdpjPqorWThv0OeQBwm1G30gYUHZMbjliuzx0Gtw0lgO7Gb4pHO56hB-Aar_KF4XFJO8ZFyXRPE84T7Lptbu8f2BzLq2jslwPIVLYpU8jdHh0PI703v2RYgAb67-Ltk6-18FGgBiGoB6a-G6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggPCIDhgHAQATIC6wI6AoBA-gsCCAGADAHQFQGAFwE%26num%3D1%26sig%3DAOD64_2XhvVKG5lvuNtdTgxzA8q0URI3VA%26client%3Dca-pub-5985888800443698%26adurl%3D HTTP/1.1
Host: ads.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 14:35:45 GMT
content-type: text/html
server: Kestrel
cache-control: private, max-age=0, no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-max-age: 1000
cross-origin-resource-policy: cross-origin
p3p: CP='CUR ADM OUR NOR STA NID'
report-to: {"endpoints":[{"url":"https://csm.eu.criteo.net/heavyad?cppv=3&cpp=tPdztqaK136-tDjtk7Iwins8c3QjVT-6Kbssy4uOQ9SRhjisDohXlY7IAXu6fr_goby_VrU2MSdc8am4-C9DVrGtwKpG6G13rQELtAOAGGK55CpRd5Dan8On9DbUtUFk5yTZZmViDpFFVPQj3V8qqNzMj71hJhmFMXwtaeB7S3EiG9uJcmsGSi6pcNdX7PDFuVin9S63cLFvgUE2jfiAymMJLw3bBeAnCQ7ZzChJcwxCvYYC7saXL5L1ROhWeFsdM0RBUw"}], "max_age": 86400}
link: <pix.eu.criteo.net>; rel=preconnect; crossorigin, <static.criteo.net>; rel=preconnect; crossorigin
server-processing-duration-in-ticks: 125383740
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ads.eu.criteo.com/delivery/r/afr.php?z=Y9--wgABBYwCO8vrAAUQY-xWCjBh3mgcx7BY8A&u=%7CaCyLL8vY83XBysrS9hUvDxi%2BEPA6OWcu4Lw1QdHFCqw%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_ArHr9DlvVwUA0Lh10Pk2WlfeyBMX_as4AVFYMbMe0Cm0xI9yR5IIJj7yUih5blT-gPFE2cLD5IzvuJlqmxB1eDF6CvHkYNB7TRVeOEZ0idrcU-0NI3kQQ58IfU1NmMA2Xi8HES4RY1kCAj2EVYzoYX9GwFRwUibE9VQhTSXBjhgae1AnNiTSey9WKn8eVHje_3i_wloU_-m9xIzLMFeRD8hMXvs8QgMxJmgS3biKxanqrd01GCQGr27DjgWJe6VXKWkGfD4sVv4bJZu14u_JjKQBjVznzU4Cd-Y-ghr7EhIht95SQdkbmHHELrN6lRDTEILJig6CZ2CgvhKHTRhAz3hQaNDb7TWuz6PtQUM1IyQpdv7rb3tdA2aqPV-aUuxP8E3iCDn5FYxdyymKljgOktnJXcW0uht_kD7ipA0xEMFgLIbCKi3Z4eHBWIypFSN4AD8UIAT1CBRamBPhCcy522Uw2fga6NZ7IEihntlWBwj8Oc_NkPR_fudHBk5Uv4ezc-s_5DHVcv7DPG4hipBh_QL1V8QJvsIW3BdJQ0Oj0415jTbKPqNoA4w&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCZLmWwr7fY4yLBOuX78EP46CUwATJntKxXNWdkfdwwI23ARABIABgw4SAgJgYggEXY2EtcHViLTU5ODU4ODg4MDA0NDM2OTjIAQmpAt5wzfFwHLI-qAMBqgT0AU_QWHUUXZYHwLd2XuYF42sDBQk-z-I1padpOY1ymMbyXV7pLUEFuXsgkoFzEh_Om1XtkX9xiI9jQQDIu6FmhwW5URPOaJHQLcqpEA5olLS624RfQZAf3I4aQvTPBogI7D_PYxm67H4bKISFWM7-icgq_NtyH9_uTgMZVnZiSIVK31rnkm7XxXQ07yLPXtlzAjms30lWEZrmdT02pk60Kp5gzZU5Cw--XbGRRFrwhWG-zAtXL-SeSdGF-pvSPFmWMhWH47QRFlpwTMM_TDJlFxkra3X94TqPX33-Yxc0GEzT0EM2AFX4sUR9Q65Dk91wmbHYD4KABvrv4u2Tr7XwUaAGIagHpr4bqAeW2BuoB6qbsQKoB_-esQKoB9-fsQLYBwDSCA8IgOGAcBABMgLrAjoCgED6CwIIAYAMAdAVAYAXAQ%26num%3D1%26sig%3DAOD64_1ka_tlmAkZHpv4jXKnml7nAqGGmA%26client%3Dca-pub-5985888800443698%26adurl%3D
178.250.0.138200 OK 0 B URL HTTP/2 ads.eu.criteo.com/delivery/r/afr.php?z=Y9--wgABBYwCO8vrAAUQY-xWCjBh3mgcx7BY8A&u=%7CaCyLL8vY83XBysrS9hUvDxi%2BEPA6OWcu4Lw1QdHFCqw%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_ArHr9DlvVwUA0Lh10Pk2WlfeyBMX_as4AVFYMbMe0Cm0xI9yR5IIJj7yUih5blT-gPFE2cLD5IzvuJlqmxB1eDF6CvHkYNB7TRVeOEZ0idrcU-0NI3kQQ58IfU1NmMA2Xi8HES4RY1kCAj2EVYzoYX9GwFRwUibE9VQhTSXBjhgae1AnNiTSey9WKn8eVHje_3i_wloU_-m9xIzLMFeRD8hMXvs8QgMxJmgS3biKxanqrd01GCQGr27DjgWJe6VXKWkGfD4sVv4bJZu14u_JjKQBjVznzU4Cd-Y-ghr7EhIht95SQdkbmHHELrN6lRDTEILJig6CZ2CgvhKHTRhAz3hQaNDb7TWuz6PtQUM1IyQpdv7rb3tdA2aqPV-aUuxP8E3iCDn5FYxdyymKljgOktnJXcW0uht_kD7ipA0xEMFgLIbCKi3Z4eHBWIypFSN4AD8UIAT1CBRamBPhCcy522Uw2fga6NZ7IEihntlWBwj8Oc_NkPR_fudHBk5Uv4ezc-s_5DHVcv7DPG4hipBh_QL1V8QJvsIW3BdJQ0Oj0415jTbKPqNoA4w&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCZLmWwr7fY4yLBOuX78EP46CUwATJntKxXNWdkfdwwI23ARABIABgw4SAgJgYggEXY2EtcHViLTU5ODU4ODg4MDA0NDM2OTjIAQmpAt5wzfFwHLI-qAMBqgT0AU_QWHUUXZYHwLd2XuYF42sDBQk-z-I1padpOY1ymMbyXV7pLUEFuXsgkoFzEh_Om1XtkX9xiI9jQQDIu6FmhwW5URPOaJHQLcqpEA5olLS624RfQZAf3I4aQvTPBogI7D_PYxm67H4bKISFWM7-icgq_NtyH9_uTgMZVnZiSIVK31rnkm7XxXQ07yLPXtlzAjms30lWEZrmdT02pk60Kp5gzZU5Cw--XbGRRFrwhWG-zAtXL-SeSdGF-pvSPFmWMhWH47QRFlpwTMM_TDJlFxkra3X94TqPX33-Yxc0GEzT0EM2AFX4sUR9Q65Dk91wmbHYD4KABvrv4u2Tr7XwUaAGIagHpr4bqAeW2BuoB6qbsQKoB_-esQKoB9-fsQLYBwDSCA8IgOGAcBABMgLrAjoCgED6CwIIAYAMAdAVAYAXAQ%26num%3D1%26sig%3DAOD64_1ka_tlmAkZHpv4jXKnml7nAqGGmA%26client%3Dca-pub-5985888800443698%26adurl%3D
IP 178.250.0.138:0
GET /delivery/r/afr.php?z=Y9--wgABBYwCO8vrAAUQY-xWCjBh3mgcx7BY8A&u=%7CaCyLL8vY83XBysrS9hUvDxi%2BEPA6OWcu4Lw1QdHFCqw%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_ArHr9DlvVwUA0Lh10Pk2WlfeyBMX_as4AVFYMbMe0Cm0xI9yR5IIJj7yUih5blT-gPFE2cLD5IzvuJlqmxB1eDF6CvHkYNB7TRVeOEZ0idrcU-0NI3kQQ58IfU1NmMA2Xi8HES4RY1kCAj2EVYzoYX9GwFRwUibE9VQhTSXBjhgae1AnNiTSey9WKn8eVHje_3i_wloU_-m9xIzLMFeRD8hMXvs8QgMxJmgS3biKxanqrd01GCQGr27DjgWJe6VXKWkGfD4sVv4bJZu14u_JjKQBjVznzU4Cd-Y-ghr7EhIht95SQdkbmHHELrN6lRDTEILJig6CZ2CgvhKHTRhAz3hQaNDb7TWuz6PtQUM1IyQpdv7rb3tdA2aqPV-aUuxP8E3iCDn5FYxdyymKljgOktnJXcW0uht_kD7ipA0xEMFgLIbCKi3Z4eHBWIypFSN4AD8UIAT1CBRamBPhCcy522Uw2fga6NZ7IEihntlWBwj8Oc_NkPR_fudHBk5Uv4ezc-s_5DHVcv7DPG4hipBh_QL1V8QJvsIW3BdJQ0Oj0415jTbKPqNoA4w&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCZLmWwr7fY4yLBOuX78EP46CUwATJntKxXNWdkfdwwI23ARABIABgw4SAgJgYggEXY2EtcHViLTU5ODU4ODg4MDA0NDM2OTjIAQmpAt5wzfFwHLI-qAMBqgT0AU_QWHUUXZYHwLd2XuYF42sDBQk-z-I1padpOY1ymMbyXV7pLUEFuXsgkoFzEh_Om1XtkX9xiI9jQQDIu6FmhwW5URPOaJHQLcqpEA5olLS624RfQZAf3I4aQvTPBogI7D_PYxm67H4bKISFWM7-icgq_NtyH9_uTgMZVnZiSIVK31rnkm7XxXQ07yLPXtlzAjms30lWEZrmdT02pk60Kp5gzZU5Cw--XbGRRFrwhWG-zAtXL-SeSdGF-pvSPFmWMhWH47QRFlpwTMM_TDJlFxkra3X94TqPX33-Yxc0GEzT0EM2AFX4sUR9Q65Dk91wmbHYD4KABvrv4u2Tr7XwUaAGIagHpr4bqAeW2BuoB6qbsQKoB_-esQKoB9-fsQLYBwDSCA8IgOGAcBABMgLrAjoCgED6CwIIAYAMAdAVAYAXAQ%26num%3D1%26sig%3DAOD64_1ka_tlmAkZHpv4jXKnml7nAqGGmA%26client%3Dca-pub-5985888800443698%26adurl%3D HTTP/1.1
Host: ads.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 14:35:46 GMT
content-type: text/html
server: Kestrel
cache-control: private, max-age=0, no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-max-age: 1000
cross-origin-resource-policy: cross-origin
p3p: CP='CUR ADM OUR NOR STA NID'
report-to: {"endpoints":[{"url":"https://csm.eu.criteo.net/heavyad?cppv=3&cpp=aw47oqaK136-tDjtslH9Ap1LHEtGyIwDwbtQ0DkgNYqEaaP0pNqCDgTNi4lI3ajNqo89ZTESlDVjDYzrfl824PDhotq5_VqEonoBmgfnK4dKoFfSCmWuv2sqU6fGnvP07Gh4tXVhW0dOtxMBVOI1RjZZrfvsfkj0cIo2i79aAtACPKCzcxuiUTlmteDgVK7WvU8HJvRTlp9mAZolMkKBdB3NjiiWzH7_4lXebhdajOo827NbmqJ18apNfv9BVOu_ZomNCw"}], "max_age": 86400}
link: <pix.eu.criteo.net>; rel=preconnect; crossorigin, <static.criteo.net>; rel=preconnect; crossorigin
server-processing-duration-in-ticks: 169945938
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Changa
142.250.74.138200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Changa
IP 142.250.74.138:0
GET /css?family=Changa HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://shortcutforlinks.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 05 Feb 2023 14:35:44 GMT
date: Sun, 05 Feb 2023 14:35:44 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
172.217.21.162200 OK 0 B URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP 172.217.21.162:0
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://shortcutforlinks.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Sun, 05 Feb 2023 14:35:44 GMT
expires: Sun, 05 Feb 2023 14:35:44 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 743624357392621021
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 50016
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cat.fr.eu.criteo.com/delivery/lg.php?cppv=3&cpp=MZ3RTjJwH2wcgyAhk9jTPTiOVISbkvxgTO_Rr5pd41UG1a9WUMgNtIBQQbO00fIQN8-5K6nIqwTHNqAxtRMN9FbyyTbBQeSmipKlGkUmhDCQzuZhqaXYn9g46Fv1bH3hHvuP5nccxX1u7RsFQox4cH_zBl9xDNY1SE4PhBfzxwt0Z9c321nohl8qbYrC4dvAAXS4RnDra3jZZDp7Y5bA12gaq7aJBTHTJKhvQYLW5iCfBwIS-UfeB0fxPhMsbpC5fP1j53NCFGbPNP52yFtMy8QP6AEf1aPxXhuAFEb8Fsvcb3IZa9e736CBBC1tOThL4eDbA3DoxWIa39jboZvNsKgmXSmegGO0q_rFhEy9-3MHPfIDxTV5AIX25BuiSLWHvA-SFJoPWQJZMOJSABvZQpT9NX_rQzWFFWRQu6LjauEE12lszpJR1iY5WEgQmcej5B-zBg
178.250.0.160200 OK 0 B URL HTTP/2 cat.fr.eu.criteo.com/delivery/lg.php?cppv=3&cpp=MZ3RTjJwH2wcgyAhk9jTPTiOVISbkvxgTO_Rr5pd41UG1a9WUMgNtIBQQbO00fIQN8-5K6nIqwTHNqAxtRMN9FbyyTbBQeSmipKlGkUmhDCQzuZhqaXYn9g46Fv1bH3hHvuP5nccxX1u7RsFQox4cH_zBl9xDNY1SE4PhBfzxwt0Z9c321nohl8qbYrC4dvAAXS4RnDra3jZZDp7Y5bA12gaq7aJBTHTJKhvQYLW5iCfBwIS-UfeB0fxPhMsbpC5fP1j53NCFGbPNP52yFtMy8QP6AEf1aPxXhuAFEb8Fsvcb3IZa9e736CBBC1tOThL4eDbA3DoxWIa39jboZvNsKgmXSmegGO0q_rFhEy9-3MHPfIDxTV5AIX25BuiSLWHvA-SFJoPWQJZMOJSABvZQpT9NX_rQzWFFWRQu6LjauEE12lszpJR1iY5WEgQmcej5B-zBg
IP 178.250.0.160:0
GET /delivery/lg.php?cppv=3&cpp=MZ3RTjJwH2wcgyAhk9jTPTiOVISbkvxgTO_Rr5pd41UG1a9WUMgNtIBQQbO00fIQN8-5K6nIqwTHNqAxtRMN9FbyyTbBQeSmipKlGkUmhDCQzuZhqaXYn9g46Fv1bH3hHvuP5nccxX1u7RsFQox4cH_zBl9xDNY1SE4PhBfzxwt0Z9c321nohl8qbYrC4dvAAXS4RnDra3jZZDp7Y5bA12gaq7aJBTHTJKhvQYLW5iCfBwIS-UfeB0fxPhMsbpC5fP1j53NCFGbPNP52yFtMy8QP6AEf1aPxXhuAFEb8Fsvcb3IZa9e736CBBC1tOThL4eDbA3DoxWIa39jboZvNsKgmXSmegGO0q_rFhEy9-3MHPfIDxTV5AIX25BuiSLWHvA-SFJoPWQJZMOJSABvZQpT9NX_rQzWFFWRQu6LjauEE12lszpJR1iY5WEgQmcej5B-zBg HTTP/1.1
Host: cat.fr.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 14:35:46 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
server-processing-duration-in-ticks: 3412638
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ads.eu.criteo.com/delivery/r/afr.php?z=Y9--wgAAsPACO8v3AATMJ9KWK4mRU9z9rr_tVA&u=%7CaCyLL8vY83VQHKIDp%2FfxeaYtiZO7UWkiePjmsH75e8Q%3D%7C&c1=d4_i42wbpE2NRhSHxThdXdeadzG9gosNy44cDHK1QYO1j6dIe_y2Y_pBLhwf6cZTEPQDJZ9eRiCyj82E2z39pfuJTruwT2weoB4T5CXSqRP1u_dIBRj8XWVm_O30i73ayeK-V5jCBOF60bhxbJ0G20vgzslEQK_oikatKeA02LKy9zE0SC7vmJ63dlZnODxc30WHap6YAdLmYXSN9-_uoWJPGlkLsh816AklsrD8BPK87W2qDyyaZnjOYWPzJ0zW3Bh7sfARflsHzpi2KG-pvmQ0KgkxAVzAxEm8jUiNNNMgpCZ76wFdTc5JbZoVlx08KDyo4RyjuAKyyB-InshFzQgvB4MjAlc8V1_X6HAG_80Dm1L2k-EE7Dk7-o6BArfSBED_TisXDu3lrslu_IshtpNMH5_VvW8csLMAWBu99bP6NoabHKYMUnTG3PErPH58A3oM-HjAepXu9rTwSTT8fSN4E4OjjGZqZ4w_pNh4rg7aKMo-FU4iIoosJa0b7D02f_9aa-0dYm1wBtHiDz_O8rjq12j2FVtKWtnh_y46kc_pGvAomyv0d5ieAKco50NzkXBlU43vP3Y&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCgiMRwr7fY_DhAveX78EPp5iTiArJntKxXNWdkfdwwI23ARABIABgw4SAgJgYggEXY2EtcHViLTU5ODU4ODg4MDA0NDM2OTjIAQmpAt5wzfFwHLI-qAMBqgT1AU_Q_EeCLxg2QcrhrtFOqSlWi88bpCX-A0_9rD4ejdghBsScp8A4GNMWx5mNNjZ9CdOQRK-5T2qxomPx-vHa1hi1epP68Nm0SqOBcVOFpZ5r41KN_8bfYAnFMLop0y1vYashi-YsNtRN6ln9P-15LZBXNX_30GsBn8MUcau_-UIUpR7v7e9_3FhGrEwUbrNAGrHhFhKT-V5uD4NZavlYi6w7WlqYticAMye8w3oipJck7nsb0JOnjkW8yULeKgt0gqiQdw3YbUr3ojml3MJ5xsWwJGB015_y0MOwqKFZSSUkIa3Q9K00Id4Gl9TKRcZ6QFOKzkzOgAb67-Ltk6-18FGgBiGoB6a-G6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggPCIDhgHAQATIC6wI6AoBA-gsCCAGADAHQFQGAFwE%26num%3D1%26sig%3DAOD64_2TCvHMh6Z1z8Lq-lfoLptJ6xPLwA%26client%3Dca-pub-5985888800443698%26adurl%3D
178.250.0.138200 OK 0 B URL HTTP/2 ads.eu.criteo.com/delivery/r/afr.php?z=Y9--wgAAsPACO8v3AATMJ9KWK4mRU9z9rr_tVA&u=%7CaCyLL8vY83VQHKIDp%2FfxeaYtiZO7UWkiePjmsH75e8Q%3D%7C&c1=d4_i42wbpE2NRhSHxThdXdeadzG9gosNy44cDHK1QYO1j6dIe_y2Y_pBLhwf6cZTEPQDJZ9eRiCyj82E2z39pfuJTruwT2weoB4T5CXSqRP1u_dIBRj8XWVm_O30i73ayeK-V5jCBOF60bhxbJ0G20vgzslEQK_oikatKeA02LKy9zE0SC7vmJ63dlZnODxc30WHap6YAdLmYXSN9-_uoWJPGlkLsh816AklsrD8BPK87W2qDyyaZnjOYWPzJ0zW3Bh7sfARflsHzpi2KG-pvmQ0KgkxAVzAxEm8jUiNNNMgpCZ76wFdTc5JbZoVlx08KDyo4RyjuAKyyB-InshFzQgvB4MjAlc8V1_X6HAG_80Dm1L2k-EE7Dk7-o6BArfSBED_TisXDu3lrslu_IshtpNMH5_VvW8csLMAWBu99bP6NoabHKYMUnTG3PErPH58A3oM-HjAepXu9rTwSTT8fSN4E4OjjGZqZ4w_pNh4rg7aKMo-FU4iIoosJa0b7D02f_9aa-0dYm1wBtHiDz_O8rjq12j2FVtKWtnh_y46kc_pGvAomyv0d5ieAKco50NzkXBlU43vP3Y&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCgiMRwr7fY_DhAveX78EPp5iTiArJntKxXNWdkfdwwI23ARABIABgw4SAgJgYggEXY2EtcHViLTU5ODU4ODg4MDA0NDM2OTjIAQmpAt5wzfFwHLI-qAMBqgT1AU_Q_EeCLxg2QcrhrtFOqSlWi88bpCX-A0_9rD4ejdghBsScp8A4GNMWx5mNNjZ9CdOQRK-5T2qxomPx-vHa1hi1epP68Nm0SqOBcVOFpZ5r41KN_8bfYAnFMLop0y1vYashi-YsNtRN6ln9P-15LZBXNX_30GsBn8MUcau_-UIUpR7v7e9_3FhGrEwUbrNAGrHhFhKT-V5uD4NZavlYi6w7WlqYticAMye8w3oipJck7nsb0JOnjkW8yULeKgt0gqiQdw3YbUr3ojml3MJ5xsWwJGB015_y0MOwqKFZSSUkIa3Q9K00Id4Gl9TKRcZ6QFOKzkzOgAb67-Ltk6-18FGgBiGoB6a-G6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggPCIDhgHAQATIC6wI6AoBA-gsCCAGADAHQFQGAFwE%26num%3D1%26sig%3DAOD64_2TCvHMh6Z1z8Lq-lfoLptJ6xPLwA%26client%3Dca-pub-5985888800443698%26adurl%3D
IP 178.250.0.138:0
GET /delivery/r/afr.php?z=Y9--wgAAsPACO8v3AATMJ9KWK4mRU9z9rr_tVA&u=%7CaCyLL8vY83VQHKIDp%2FfxeaYtiZO7UWkiePjmsH75e8Q%3D%7C&c1=d4_i42wbpE2NRhSHxThdXdeadzG9gosNy44cDHK1QYO1j6dIe_y2Y_pBLhwf6cZTEPQDJZ9eRiCyj82E2z39pfuJTruwT2weoB4T5CXSqRP1u_dIBRj8XWVm_O30i73ayeK-V5jCBOF60bhxbJ0G20vgzslEQK_oikatKeA02LKy9zE0SC7vmJ63dlZnODxc30WHap6YAdLmYXSN9-_uoWJPGlkLsh816AklsrD8BPK87W2qDyyaZnjOYWPzJ0zW3Bh7sfARflsHzpi2KG-pvmQ0KgkxAVzAxEm8jUiNNNMgpCZ76wFdTc5JbZoVlx08KDyo4RyjuAKyyB-InshFzQgvB4MjAlc8V1_X6HAG_80Dm1L2k-EE7Dk7-o6BArfSBED_TisXDu3lrslu_IshtpNMH5_VvW8csLMAWBu99bP6NoabHKYMUnTG3PErPH58A3oM-HjAepXu9rTwSTT8fSN4E4OjjGZqZ4w_pNh4rg7aKMo-FU4iIoosJa0b7D02f_9aa-0dYm1wBtHiDz_O8rjq12j2FVtKWtnh_y46kc_pGvAomyv0d5ieAKco50NzkXBlU43vP3Y&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCgiMRwr7fY_DhAveX78EPp5iTiArJntKxXNWdkfdwwI23ARABIABgw4SAgJgYggEXY2EtcHViLTU5ODU4ODg4MDA0NDM2OTjIAQmpAt5wzfFwHLI-qAMBqgT1AU_Q_EeCLxg2QcrhrtFOqSlWi88bpCX-A0_9rD4ejdghBsScp8A4GNMWx5mNNjZ9CdOQRK-5T2qxomPx-vHa1hi1epP68Nm0SqOBcVOFpZ5r41KN_8bfYAnFMLop0y1vYashi-YsNtRN6ln9P-15LZBXNX_30GsBn8MUcau_-UIUpR7v7e9_3FhGrEwUbrNAGrHhFhKT-V5uD4NZavlYi6w7WlqYticAMye8w3oipJck7nsb0JOnjkW8yULeKgt0gqiQdw3YbUr3ojml3MJ5xsWwJGB015_y0MOwqKFZSSUkIa3Q9K00Id4Gl9TKRcZ6QFOKzkzOgAb67-Ltk6-18FGgBiGoB6a-G6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggPCIDhgHAQATIC6wI6AoBA-gsCCAGADAHQFQGAFwE%26num%3D1%26sig%3DAOD64_2TCvHMh6Z1z8Lq-lfoLptJ6xPLwA%26client%3Dca-pub-5985888800443698%26adurl%3D HTTP/1.1
Host: ads.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 14:35:48 GMT
content-type: text/html
server: Kestrel
cache-control: private, max-age=0, no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-max-age: 1000
cross-origin-resource-policy: cross-origin
p3p: CP='CUR ADM OUR NOR STA NID'
report-to: {"endpoints":[{"url":"https://csm.eu.criteo.net/heavyad?cppv=3&cpp=WSkECqaK136-tDjtjAUJyaJxxoVioi41kLG3nrPz-zWtERrf2JsSBNNH0yuleOi4FqKNf2bXG9hWGWxGasxNPSXpOwA3YL5ekh2OQ8d0lg7oXNYDkbBQRc2vuhebU2Q9pH6Js_-RQnFVf08qJW7f_VJRDrhLD1Dp7YCaKvcJ4SsMJuZLIxRBSp9Cslhjn3WRBkxTXq8QHSuNODnd9_c4K7lhmfHyQBVPdMm87jFPM7kdIeIzEvBa7g3Ch5jCi3M6t1CTPw"}], "max_age": 86400}
link: <pix.eu.criteo.net>; rel=preconnect; crossorigin, <static.criteo.net>; rel=preconnect; crossorigin
server-processing-duration-in-ticks: 154673296
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
static.criteo.net/animejs/animejs.js
178.250.2.130200 OK 0 B URL HTTP/2 static.criteo.net/animejs/animejs.js
IP 178.250.2.130:0
GET /animejs/animejs.js HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 14:35:47 GMT
content-type: text/javascript
last-modified: Tue, 26 Mar 2019 17:44:11 GMT
etag: W/"5c9a64eb-3181"
expires: Wed, 31 Jan 2024 14:35:47 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ads.eu.criteo.com/delivery/r/afr.php?z=Y9--wgABLk8CO8sVAATyK-fh8WHwf-KN3upeSg&u=%7CaCyLL8vY83W7Vpz4aA2Fq622kg72ZNh%2F8py2vBDB5Pc%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_AM8iEE4GHx4XAZ8-c9e5LlJfMjehYPJbM0j2hknANCpMoZ3wmmJmKy5fYOcBKcrWAsOADS-EGltbv1jJqIwAAQxSZiT84DittQpNWMwBiJ3jjG0YcZubr9jLUwS6qxCA6HbKhEqrLz6Af6p5PWzhU8o7DePDzs2kPO8alusCGTAn7rI0hvcEy86tSlHXaDVkOMB61uWYOwlraL4PNQNRWqX_G04VbKHUVfX4ypxxfd_S4sCO6XDVUvio6MvhoqCwhvUBA1zTo5dmdPlLSSswDTdJsmfHPqSq6c6d8FG6D9fIoiAiAscJwxh5M90XVTupzvw1RgMMspqwLnAwtuNvMGlPLis61jT4czFSkutxQRkfZfMMCGflHzoHM6rjP-vp_hdwm9fpKmpa0tW3EjM9oC1EBn-AiOk05cDoqK2Ye4TBVYKaAi_PE0RWKycZp2sa4-JyA2FzfIV-AP0gTi2BVOcyedOI6jzYsnUj70EXxMzD4XBE4h0P0JjsGgnqIslYC4gdZ4WBTFGGHjGFWuc26IghOKY_yE9sbC8E3PYS0HVwjX4pDQIul2g&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCw8fFwr7fY8_cBJWW78EPq-ST0AHJntKxXIX-l_dwwI23ARABIABgw4SAgJgYggEXY2EtcHViLTU5ODU4ODg4MDA0NDM2OTjIAQmpAt5wzfFwHLI-qAMBqgT1AU_Q-lJoMOP8xXTKGK-tfnHj8d-ZzfH7b1n8O7Esk49eWF3o058YCCnBuzC_dch-SM_q-PR4XSza4rfGKFNuKnB5WxEd-YhM44FfVlqvm1zd2mdEhxqAN6SuRsiPkQXINno6bPq8stT6CtNuOtActW46ofS8tkiv9kvCwG99lmrpx7e7FCm7SOyrgZ0vzrsy5bCIx2Q7tiueNHYV1O6L_9DaSNzGVHIlq3vJkTrtwKcdd2NKzLW2JI7tD2wMnxEQ7UQwEH2ZHrLMWs2JkOCRjjE_sTeYnlbkhZlHQRwC-JbxFJj-Tz9z7lc6KzL39uMY5bo4lJc2gAb67-Ltk6-18FGgBiGoB6a-G6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggPCIDhgHAQATIC6wI6AoBA-gsCCAGADAHQFQGAFwE%26num%3D1%26sig%3DAOD64_0tvJ-d9CCaEYr6ytFintapwFFdmw%26client%3Dca-pub-5985888800443698%26adurl%3D
178.250.0.138200 OK 0 B URL HTTP/2 ads.eu.criteo.com/delivery/r/afr.php?z=Y9--wgABLk8CO8sVAATyK-fh8WHwf-KN3upeSg&u=%7CaCyLL8vY83W7Vpz4aA2Fq622kg72ZNh%2F8py2vBDB5Pc%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_AM8iEE4GHx4XAZ8-c9e5LlJfMjehYPJbM0j2hknANCpMoZ3wmmJmKy5fYOcBKcrWAsOADS-EGltbv1jJqIwAAQxSZiT84DittQpNWMwBiJ3jjG0YcZubr9jLUwS6qxCA6HbKhEqrLz6Af6p5PWzhU8o7DePDzs2kPO8alusCGTAn7rI0hvcEy86tSlHXaDVkOMB61uWYOwlraL4PNQNRWqX_G04VbKHUVfX4ypxxfd_S4sCO6XDVUvio6MvhoqCwhvUBA1zTo5dmdPlLSSswDTdJsmfHPqSq6c6d8FG6D9fIoiAiAscJwxh5M90XVTupzvw1RgMMspqwLnAwtuNvMGlPLis61jT4czFSkutxQRkfZfMMCGflHzoHM6rjP-vp_hdwm9fpKmpa0tW3EjM9oC1EBn-AiOk05cDoqK2Ye4TBVYKaAi_PE0RWKycZp2sa4-JyA2FzfIV-AP0gTi2BVOcyedOI6jzYsnUj70EXxMzD4XBE4h0P0JjsGgnqIslYC4gdZ4WBTFGGHjGFWuc26IghOKY_yE9sbC8E3PYS0HVwjX4pDQIul2g&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCw8fFwr7fY8_cBJWW78EPq-ST0AHJntKxXIX-l_dwwI23ARABIABgw4SAgJgYggEXY2EtcHViLTU5ODU4ODg4MDA0NDM2OTjIAQmpAt5wzfFwHLI-qAMBqgT1AU_Q-lJoMOP8xXTKGK-tfnHj8d-ZzfH7b1n8O7Esk49eWF3o058YCCnBuzC_dch-SM_q-PR4XSza4rfGKFNuKnB5WxEd-YhM44FfVlqvm1zd2mdEhxqAN6SuRsiPkQXINno6bPq8stT6CtNuOtActW46ofS8tkiv9kvCwG99lmrpx7e7FCm7SOyrgZ0vzrsy5bCIx2Q7tiueNHYV1O6L_9DaSNzGVHIlq3vJkTrtwKcdd2NKzLW2JI7tD2wMnxEQ7UQwEH2ZHrLMWs2JkOCRjjE_sTeYnlbkhZlHQRwC-JbxFJj-Tz9z7lc6KzL39uMY5bo4lJc2gAb67-Ltk6-18FGgBiGoB6a-G6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggPCIDhgHAQATIC6wI6AoBA-gsCCAGADAHQFQGAFwE%26num%3D1%26sig%3DAOD64_0tvJ-d9CCaEYr6ytFintapwFFdmw%26client%3Dca-pub-5985888800443698%26adurl%3D
IP 178.250.0.138:0
GET /delivery/r/afr.php?z=Y9--wgABLk8CO8sVAATyK-fh8WHwf-KN3upeSg&u=%7CaCyLL8vY83W7Vpz4aA2Fq622kg72ZNh%2F8py2vBDB5Pc%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_AM8iEE4GHx4XAZ8-c9e5LlJfMjehYPJbM0j2hknANCpMoZ3wmmJmKy5fYOcBKcrWAsOADS-EGltbv1jJqIwAAQxSZiT84DittQpNWMwBiJ3jjG0YcZubr9jLUwS6qxCA6HbKhEqrLz6Af6p5PWzhU8o7DePDzs2kPO8alusCGTAn7rI0hvcEy86tSlHXaDVkOMB61uWYOwlraL4PNQNRWqX_G04VbKHUVfX4ypxxfd_S4sCO6XDVUvio6MvhoqCwhvUBA1zTo5dmdPlLSSswDTdJsmfHPqSq6c6d8FG6D9fIoiAiAscJwxh5M90XVTupzvw1RgMMspqwLnAwtuNvMGlPLis61jT4czFSkutxQRkfZfMMCGflHzoHM6rjP-vp_hdwm9fpKmpa0tW3EjM9oC1EBn-AiOk05cDoqK2Ye4TBVYKaAi_PE0RWKycZp2sa4-JyA2FzfIV-AP0gTi2BVOcyedOI6jzYsnUj70EXxMzD4XBE4h0P0JjsGgnqIslYC4gdZ4WBTFGGHjGFWuc26IghOKY_yE9sbC8E3PYS0HVwjX4pDQIul2g&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCw8fFwr7fY8_cBJWW78EPq-ST0AHJntKxXIX-l_dwwI23ARABIABgw4SAgJgYggEXY2EtcHViLTU5ODU4ODg4MDA0NDM2OTjIAQmpAt5wzfFwHLI-qAMBqgT1AU_Q-lJoMOP8xXTKGK-tfnHj8d-ZzfH7b1n8O7Esk49eWF3o058YCCnBuzC_dch-SM_q-PR4XSza4rfGKFNuKnB5WxEd-YhM44FfVlqvm1zd2mdEhxqAN6SuRsiPkQXINno6bPq8stT6CtNuOtActW46ofS8tkiv9kvCwG99lmrpx7e7FCm7SOyrgZ0vzrsy5bCIx2Q7tiueNHYV1O6L_9DaSNzGVHIlq3vJkTrtwKcdd2NKzLW2JI7tD2wMnxEQ7UQwEH2ZHrLMWs2JkOCRjjE_sTeYnlbkhZlHQRwC-JbxFJj-Tz9z7lc6KzL39uMY5bo4lJc2gAb67-Ltk6-18FGgBiGoB6a-G6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggPCIDhgHAQATIC6wI6AoBA-gsCCAGADAHQFQGAFwE%26num%3D1%26sig%3DAOD64_0tvJ-d9CCaEYr6ytFintapwFFdmw%26client%3Dca-pub-5985888800443698%26adurl%3D HTTP/1.1
Host: ads.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 14:35:46 GMT
content-type: text/html
server: Kestrel
cache-control: private, max-age=0, no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-max-age: 1000
cross-origin-resource-policy: cross-origin
p3p: CP='CUR ADM OUR NOR STA NID'
report-to: {"endpoints":[{"url":"https://csm.eu.criteo.net/heavyad?cppv=3&cpp=qtiXNaaK136-tDjtgHgSPoZ3oSgakaFcNBTiTK1HeGDS2Jqx18UOVzvyDAdHHPVED_ZJ1n3ol0bfE7IOmhyiTLwjBnHhV0uGqde82q81Eix4PBxLF5bCPwCiYUHR-UxExifsdUPAuFVbCOctYhwIObINr_llX2i_Djp-kbHHp1qJeQD04jcnlWlIQmJph50-0T-BItcIAeWm1TnWcOFeCJssS_Q4RnEm2MwE1B5rsIW9EcHJxzltxKTuBQiyTzUSq5vG8w"}], "max_age": 86400}
link: <pix.eu.criteo.net>; rel=preconnect; crossorigin, <static.criteo.net>; rel=preconnect; crossorigin
server-processing-duration-in-ticks: 137663811
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ads.eu.criteo.com/delivery/r/afr.php?z=Y9--wgABcYMKmu1BAAKaPwthlbdjaLQupKeqWQ&u=%7CaCyLL8vY83VpkcxnMOX4NA1Y%2BwV3YxW9L6odqwXQMfc%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_AM8iEE4GHx4XAZ8-c9e5LlJfMjehYPJbM0j2hknANCpMoZ3wmmJmKy5infGtQFhWVAqrZO9zye4-Lelmo3zWiIkTAWkB9O-UoCR3Pucw_sfhc1dYSzAAKZIojSPmJN6hPRoLmTtKTCb8NlpiudNmDnKz_zFJ9Kxe-cBVHRQF3uSv2L57KTcY6CLz6qPK3rDfZO-td8tK_uX5_rqxr_88xRWrfIHlNARMrBeZeMj12h1Hrdj8vtqIJs462245QkmyvcZR_u1zfVn9rq1nnf-tvRx1LcH_UmU1tQc50X3BKMnftYX9j1r65JjoBg4lFdwudGYUJEsciuhGfwAKPffYeGeqkuDYjphuFD2csjsI_ZLqEJJlMGS6m7TIC72A__H0HVVKtDEwA6VJxqfG-mRsPvMIn7SL1D2qJQGQzVzhRxRFemrXl5un3aXAcnzVtb4IaN6aq4vYGa6BI-AkJE7FrwzMyJarsMgmGtAZfv_fw2hjr-fUzzmaT7y6mdrXnJa8cctEx4Z5CinRQVmvXxSWG_44x1WKZZtWmarfyuRXb0MqlQnuiw9lkuw&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCnFYVwr7fY4PjBcHa6wS_tIqoB8me0rFc9dqW93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNTk4NTg4ODgwMDQ0MzY5OMgBCakC3nDN8XAcsj6oAwGqBPsBT9BO5pEbbMsIlQsw_QZ8qQ736byMykOGpnLfvxqzD8NmUvtQqXErtb5h00Lku-Bz7FY8Uf2V_o1fKhdJjap-kbxXMa_kVIFQplX93CmDjIjlZ0tojYO_cMfMseKFaJrR4z4zKAmRHXcBjQHD3sxvmmHx0uPMPFHZD5gVdjOaGQhLmdtUhFApO5CQjScauwG-540H9SZwI_GVGkdvoloBRqniREJK7raDA7cP3owK4qwjIXUIKPTliAzxTqRkGLEsChI-Md1xhgTsLrQeOABzqnl1YOujfIHlZPNXEG0l-HoTl5yZi_luz9UqDnuysK1Yw9REzcdnkiU-mTuABvrv4u2Tr7XwUaAGIagHpr4bqAeW2BuoB6qbsQKoB_-esQKoB9-fsQLYBwDSCA8IgOGAcBABMgLrAjoCgED6CwIIAYAMAdAVAYAXAQ%26num%3D1%26sig%3DAOD64_1wGOSNpEZsQBKO9UjKRK18RSkl4A%26client%3Dca-pub-5985888800443698%26adurl%3D
178.250.0.138200 OK 0 B URL HTTP/2 ads.eu.criteo.com/delivery/r/afr.php?z=Y9--wgABcYMKmu1BAAKaPwthlbdjaLQupKeqWQ&u=%7CaCyLL8vY83VpkcxnMOX4NA1Y%2BwV3YxW9L6odqwXQMfc%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_AM8iEE4GHx4XAZ8-c9e5LlJfMjehYPJbM0j2hknANCpMoZ3wmmJmKy5infGtQFhWVAqrZO9zye4-Lelmo3zWiIkTAWkB9O-UoCR3Pucw_sfhc1dYSzAAKZIojSPmJN6hPRoLmTtKTCb8NlpiudNmDnKz_zFJ9Kxe-cBVHRQF3uSv2L57KTcY6CLz6qPK3rDfZO-td8tK_uX5_rqxr_88xRWrfIHlNARMrBeZeMj12h1Hrdj8vtqIJs462245QkmyvcZR_u1zfVn9rq1nnf-tvRx1LcH_UmU1tQc50X3BKMnftYX9j1r65JjoBg4lFdwudGYUJEsciuhGfwAKPffYeGeqkuDYjphuFD2csjsI_ZLqEJJlMGS6m7TIC72A__H0HVVKtDEwA6VJxqfG-mRsPvMIn7SL1D2qJQGQzVzhRxRFemrXl5un3aXAcnzVtb4IaN6aq4vYGa6BI-AkJE7FrwzMyJarsMgmGtAZfv_fw2hjr-fUzzmaT7y6mdrXnJa8cctEx4Z5CinRQVmvXxSWG_44x1WKZZtWmarfyuRXb0MqlQnuiw9lkuw&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCnFYVwr7fY4PjBcHa6wS_tIqoB8me0rFc9dqW93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNTk4NTg4ODgwMDQ0MzY5OMgBCakC3nDN8XAcsj6oAwGqBPsBT9BO5pEbbMsIlQsw_QZ8qQ736byMykOGpnLfvxqzD8NmUvtQqXErtb5h00Lku-Bz7FY8Uf2V_o1fKhdJjap-kbxXMa_kVIFQplX93CmDjIjlZ0tojYO_cMfMseKFaJrR4z4zKAmRHXcBjQHD3sxvmmHx0uPMPFHZD5gVdjOaGQhLmdtUhFApO5CQjScauwG-540H9SZwI_GVGkdvoloBRqniREJK7raDA7cP3owK4qwjIXUIKPTliAzxTqRkGLEsChI-Md1xhgTsLrQeOABzqnl1YOujfIHlZPNXEG0l-HoTl5yZi_luz9UqDnuysK1Yw9REzcdnkiU-mTuABvrv4u2Tr7XwUaAGIagHpr4bqAeW2BuoB6qbsQKoB_-esQKoB9-fsQLYBwDSCA8IgOGAcBABMgLrAjoCgED6CwIIAYAMAdAVAYAXAQ%26num%3D1%26sig%3DAOD64_1wGOSNpEZsQBKO9UjKRK18RSkl4A%26client%3Dca-pub-5985888800443698%26adurl%3D
IP 178.250.0.138:0
GET /delivery/r/afr.php?z=Y9--wgABcYMKmu1BAAKaPwthlbdjaLQupKeqWQ&u=%7CaCyLL8vY83VpkcxnMOX4NA1Y%2BwV3YxW9L6odqwXQMfc%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_AM8iEE4GHx4XAZ8-c9e5LlJfMjehYPJbM0j2hknANCpMoZ3wmmJmKy5infGtQFhWVAqrZO9zye4-Lelmo3zWiIkTAWkB9O-UoCR3Pucw_sfhc1dYSzAAKZIojSPmJN6hPRoLmTtKTCb8NlpiudNmDnKz_zFJ9Kxe-cBVHRQF3uSv2L57KTcY6CLz6qPK3rDfZO-td8tK_uX5_rqxr_88xRWrfIHlNARMrBeZeMj12h1Hrdj8vtqIJs462245QkmyvcZR_u1zfVn9rq1nnf-tvRx1LcH_UmU1tQc50X3BKMnftYX9j1r65JjoBg4lFdwudGYUJEsciuhGfwAKPffYeGeqkuDYjphuFD2csjsI_ZLqEJJlMGS6m7TIC72A__H0HVVKtDEwA6VJxqfG-mRsPvMIn7SL1D2qJQGQzVzhRxRFemrXl5un3aXAcnzVtb4IaN6aq4vYGa6BI-AkJE7FrwzMyJarsMgmGtAZfv_fw2hjr-fUzzmaT7y6mdrXnJa8cctEx4Z5CinRQVmvXxSWG_44x1WKZZtWmarfyuRXb0MqlQnuiw9lkuw&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCnFYVwr7fY4PjBcHa6wS_tIqoB8me0rFc9dqW93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNTk4NTg4ODgwMDQ0MzY5OMgBCakC3nDN8XAcsj6oAwGqBPsBT9BO5pEbbMsIlQsw_QZ8qQ736byMykOGpnLfvxqzD8NmUvtQqXErtb5h00Lku-Bz7FY8Uf2V_o1fKhdJjap-kbxXMa_kVIFQplX93CmDjIjlZ0tojYO_cMfMseKFaJrR4z4zKAmRHXcBjQHD3sxvmmHx0uPMPFHZD5gVdjOaGQhLmdtUhFApO5CQjScauwG-540H9SZwI_GVGkdvoloBRqniREJK7raDA7cP3owK4qwjIXUIKPTliAzxTqRkGLEsChI-Md1xhgTsLrQeOABzqnl1YOujfIHlZPNXEG0l-HoTl5yZi_luz9UqDnuysK1Yw9REzcdnkiU-mTuABvrv4u2Tr7XwUaAGIagHpr4bqAeW2BuoB6qbsQKoB_-esQKoB9-fsQLYBwDSCA8IgOGAcBABMgLrAjoCgED6CwIIAYAMAdAVAYAXAQ%26num%3D1%26sig%3DAOD64_1wGOSNpEZsQBKO9UjKRK18RSkl4A%26client%3Dca-pub-5985888800443698%26adurl%3D HTTP/1.1
Host: ads.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 14:35:46 GMT
content-type: text/html
server: Kestrel
cache-control: private, max-age=0, no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-max-age: 1000
cross-origin-resource-policy: cross-origin
p3p: CP='CUR ADM OUR NOR STA NID'
report-to: {"endpoints":[{"url":"https://csm.eu.criteo.net/heavyad?cppv=3&cpp=yXQ9u6aK136-tDjtw0JP-jA7aMy5yC1IwMRfzTvJAJWqWgkFeZ8Vco7KC0C_WYlBXhuVD6EGRJN-hT3q2OsV5PLAgywigVzhf9olROnyb33VIY1qYU_YoNt9G4U1RtXuqfXVp4jUjSHhujNeQILXDD8Mj2zwEbAk0FVG8Oj6r6m8pAA21klJdHZtidCZPV50oqiwnCpj2TcEizfRU6ToKZFzUJGUyeb1vqKRuL6gvPWSBhFoATbMXAnrQbOamIVJZpPOwA"}], "max_age": 86400}
link: <pix.eu.criteo.net>; rel=preconnect; crossorigin, <static.criteo.net>; rel=preconnect; crossorigin
server-processing-duration-in-ticks: 176649071
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ads.eu.criteo.com/delivery/r/afr.php?z=Y9--wgAA16ACO8gCAAJT1AvN08-Lb9xMx-Q2Qw&u=%7CaCyLL8vY83VQLWTzoBJWgSWzNXGYnssBGeA%2FR8SJVgA%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_AM8iEE4GHx4XAZ8-c9e5LlJfMjehYPJbM0j2hknANCpMoZ3wmmJmKy6v28BIDQ-VwSUqGaT8OoC2qxKl91pprq75YeSOJhKV2ovqTswVWDWhHnhHflSgf1S52TmLJnUD5UEi7L7X4_r3608Wtzku68AiZVquTvqVlIVTC0PGSn9wdwH0A-252FYm381pD7vTM_asKcjYkSjimV-qQ1uYKdtmRvJpoah_bWxdcIIBXCWCs2ZA8nBqrL9da6UIwDcyWownDT9lxAkfkMS-i7KpXhhtnnjKOiRWxpqaAqUpTDauMeFdHaycnFFnGIy--6fRUcz4iW2VWkLwukCtjSY66YGJxwjYycmNX-KeiYPc41KgYgQ960XaOaYNcVnzOEAErVScwvCTi20QBezNvFYRS4Oal93_G9B6q2AfGJGGhyDTwByMdrVP-sA8YtFq8NSi4XXckXv09GL3wyjRRDqafwvpur2z9yYfo4PtXAqnBU1zfHbG9LcA_Z9myzU3wBO9uNp7O4XbwFSQKE0-rTxuziYIZDdkZYGJ3DXAhjuHYhKnlgcimHuMrSw&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCqcrLwr7fY6CvA4KQ78EP1KeJKMme0rFc9Z2Y93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNTk4NTg4ODgwMDQ0MzY5OMgBCakC3nDN8XAcsj6oAwGqBPoBT9A_Sf_zd-JJbmmQs7p84a_Olvz3ZJHFp1KqKwa1uEUPoNqqxZnIELPKUaP26WyGoU_dVQeScCuOqWiftMvJ7hu88Ma2PIfx7NKLSB7ZE0calW2W0kL-5evr4Yr2URO_ZKmLjVjcvMf74Jv1ewkWNofUsL-IQy7g8pfWT5A8opYxUBNEGr01hqzLws5P21bdubsQ2GFbyGnCm0B7e0_LWFhqG4_Tup1uVNAy6XgUzQlETrw_QrXM3_8SQmSbwdF7sJQIm_ZxBG7mkPDuoaKh2aR4IN7WcXT4ISflKylJnnJDK-8p8gVOyske_fY56G6K0px_vmuZiZvZ5IAG-u_i7ZOvtfBRoAYhqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_3I4VHq7hk11foRERsMYPY0qTb09g%26client%3Dca-pub-5985888800443698%26adurl%3D
178.250.0.138200 OK 0 B URL HTTP/2 ads.eu.criteo.com/delivery/r/afr.php?z=Y9--wgAA16ACO8gCAAJT1AvN08-Lb9xMx-Q2Qw&u=%7CaCyLL8vY83VQLWTzoBJWgSWzNXGYnssBGeA%2FR8SJVgA%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_AM8iEE4GHx4XAZ8-c9e5LlJfMjehYPJbM0j2hknANCpMoZ3wmmJmKy6v28BIDQ-VwSUqGaT8OoC2qxKl91pprq75YeSOJhKV2ovqTswVWDWhHnhHflSgf1S52TmLJnUD5UEi7L7X4_r3608Wtzku68AiZVquTvqVlIVTC0PGSn9wdwH0A-252FYm381pD7vTM_asKcjYkSjimV-qQ1uYKdtmRvJpoah_bWxdcIIBXCWCs2ZA8nBqrL9da6UIwDcyWownDT9lxAkfkMS-i7KpXhhtnnjKOiRWxpqaAqUpTDauMeFdHaycnFFnGIy--6fRUcz4iW2VWkLwukCtjSY66YGJxwjYycmNX-KeiYPc41KgYgQ960XaOaYNcVnzOEAErVScwvCTi20QBezNvFYRS4Oal93_G9B6q2AfGJGGhyDTwByMdrVP-sA8YtFq8NSi4XXckXv09GL3wyjRRDqafwvpur2z9yYfo4PtXAqnBU1zfHbG9LcA_Z9myzU3wBO9uNp7O4XbwFSQKE0-rTxuziYIZDdkZYGJ3DXAhjuHYhKnlgcimHuMrSw&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCqcrLwr7fY6CvA4KQ78EP1KeJKMme0rFc9Z2Y93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNTk4NTg4ODgwMDQ0MzY5OMgBCakC3nDN8XAcsj6oAwGqBPoBT9A_Sf_zd-JJbmmQs7p84a_Olvz3ZJHFp1KqKwa1uEUPoNqqxZnIELPKUaP26WyGoU_dVQeScCuOqWiftMvJ7hu88Ma2PIfx7NKLSB7ZE0calW2W0kL-5evr4Yr2URO_ZKmLjVjcvMf74Jv1ewkWNofUsL-IQy7g8pfWT5A8opYxUBNEGr01hqzLws5P21bdubsQ2GFbyGnCm0B7e0_LWFhqG4_Tup1uVNAy6XgUzQlETrw_QrXM3_8SQmSbwdF7sJQIm_ZxBG7mkPDuoaKh2aR4IN7WcXT4ISflKylJnnJDK-8p8gVOyske_fY56G6K0px_vmuZiZvZ5IAG-u_i7ZOvtfBRoAYhqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_3I4VHq7hk11foRERsMYPY0qTb09g%26client%3Dca-pub-5985888800443698%26adurl%3D
IP 178.250.0.138:0
GET /delivery/r/afr.php?z=Y9--wgAA16ACO8gCAAJT1AvN08-Lb9xMx-Q2Qw&u=%7CaCyLL8vY83VQLWTzoBJWgSWzNXGYnssBGeA%2FR8SJVgA%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_AM8iEE4GHx4XAZ8-c9e5LlJfMjehYPJbM0j2hknANCpMoZ3wmmJmKy6v28BIDQ-VwSUqGaT8OoC2qxKl91pprq75YeSOJhKV2ovqTswVWDWhHnhHflSgf1S52TmLJnUD5UEi7L7X4_r3608Wtzku68AiZVquTvqVlIVTC0PGSn9wdwH0A-252FYm381pD7vTM_asKcjYkSjimV-qQ1uYKdtmRvJpoah_bWxdcIIBXCWCs2ZA8nBqrL9da6UIwDcyWownDT9lxAkfkMS-i7KpXhhtnnjKOiRWxpqaAqUpTDauMeFdHaycnFFnGIy--6fRUcz4iW2VWkLwukCtjSY66YGJxwjYycmNX-KeiYPc41KgYgQ960XaOaYNcVnzOEAErVScwvCTi20QBezNvFYRS4Oal93_G9B6q2AfGJGGhyDTwByMdrVP-sA8YtFq8NSi4XXckXv09GL3wyjRRDqafwvpur2z9yYfo4PtXAqnBU1zfHbG9LcA_Z9myzU3wBO9uNp7O4XbwFSQKE0-rTxuziYIZDdkZYGJ3DXAhjuHYhKnlgcimHuMrSw&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCqcrLwr7fY6CvA4KQ78EP1KeJKMme0rFc9Z2Y93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNTk4NTg4ODgwMDQ0MzY5OMgBCakC3nDN8XAcsj6oAwGqBPoBT9A_Sf_zd-JJbmmQs7p84a_Olvz3ZJHFp1KqKwa1uEUPoNqqxZnIELPKUaP26WyGoU_dVQeScCuOqWiftMvJ7hu88Ma2PIfx7NKLSB7ZE0calW2W0kL-5evr4Yr2URO_ZKmLjVjcvMf74Jv1ewkWNofUsL-IQy7g8pfWT5A8opYxUBNEGr01hqzLws5P21bdubsQ2GFbyGnCm0B7e0_LWFhqG4_Tup1uVNAy6XgUzQlETrw_QrXM3_8SQmSbwdF7sJQIm_ZxBG7mkPDuoaKh2aR4IN7WcXT4ISflKylJnnJDK-8p8gVOyske_fY56G6K0px_vmuZiZvZ5IAG-u_i7ZOvtfBRoAYhqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_3I4VHq7hk11foRERsMYPY0qTb09g%26client%3Dca-pub-5985888800443698%26adurl%3D HTTP/1.1
Host: ads.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 14:35:46 GMT
content-type: text/html
server: Kestrel
cache-control: private, max-age=0, no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-max-age: 1000
cross-origin-resource-policy: cross-origin
p3p: CP='CUR ADM OUR NOR STA NID'
report-to: {"endpoints":[{"url":"https://csm.eu.criteo.net/heavyad?cppv=3&cpp=cMjSvqaK136-tDjtSNUIksHBxOzdxqp_bcXZI6qqO51Stl3AUzRGa0gNHDnbJhC-_hFbdRciuV4K2garwYcOIQmM4NACkOA_JendsTeEj9wvmfvIv-CL3-PJ_UmvZaYUyYTrdW8wtEG1RVQfR9UXHzbMen2jjRre6dDDlPmU7YPcsqdHeVvsthmQuQ3s1jHR3BmMuuFKIQ4NqQbILBf_qYb9ZMF4mTdO7PS7IPTCfdIG1mBeog7R1wW_mrAbylMpCaOWqA"}], "max_age": 86400}
link: <pix.eu.criteo.net>; rel=preconnect; crossorigin, <static.criteo.net>; rel=preconnect; crossorigin
server-processing-duration-in-ticks: 190649151
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
static.criteo.net/design/googlefont/opensans/opensans-400.css
178.250.2.130200 OK 0 B URL HTTP/2 static.criteo.net/design/googlefont/opensans/opensans-400.css
IP 178.250.2.130:0
GET /design/googlefont/opensans/opensans-400.css HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 14:35:47 GMT
content-type: text/css
last-modified: Thu, 08 Dec 2022 14:11:03 GMT
etag: W/"6391f077-9fe"
expires: Wed, 31 Jan 2024 14:35:47 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
rawgit.com/Ti9ani8/Ti9ani-SFont1/master/Ti9ani-SFont1.css
104.21.63.184200 OK 0 B URL HTTP/2 rawgit.com/Ti9ani8/Ti9ani-SFont1/master/Ti9ani-SFont1.css
IP 104.21.63.184:0
GET /Ti9ani8/Ti9ani-SFont1/master/Ti9ani-SFont1.css HTTP/1.1
Host: rawgit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://shortcutforlinks.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 14:35:45 GMT
content-type: text/css;charset=utf-8
x-content-type-options: nosniff
x-robots-tag: none
access-control-allow-origin: *
link: <https://rawgit.com/>; rel="sunset"; title="RawGit will soon shut down. Please stop using it."
sunset: Tue, 01 Oct 2019 00:00:00 GMT
etag: W/"f67bee462cb8ecec36347607ded848c2b86f7db7cddf13708a4a703d9f87e0a9"
cache-control: max-age=3600, s-maxage=300
vary: Accept-Encoding
rawgit-cache-status: STALE
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Yu9QPA9ohHuFfJ%2FeXlK14a600tiLPlaZnnEREQ1oif%2BVU0Q4d5XiAysKUIWOSdcE5%2BRFdf2oNWP9fj7DeP1W04m63L746uaw2a%2BlDxyq16fDmXIV2%2FKVuhei6e6D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; preload
server: cloudflare
cf-ray: 794c5fd57c0ab517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.fontstatic.com/f=thameen
104.21.28.204200 OK 0 B URL HTTP/2 www.fontstatic.com/f=thameen
IP 104.21.28.204:0
GET /f=thameen HTTP/1.1
Host: www.fontstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://shortcutforlinks.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 14:35:44 GMT
content-type: text/css; charset=UTF-8
pragma: no-cache
x-cache: MISS
x-proxy-cache: MISS
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OJgL7M1e46psgNPTt%2B%2FBBE%2FBY%2BBHeYGpXTtwf8MgbQLmBNYuVMTwEoiGnstISnmaL%2BWpttbfeafhXwjlzSFOl059GEblQja2v1q4Mp%2Bp61RnFCjoH57rEHN9RlxOgX7QsSXSfkM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 794c5fd59dbd0b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ads.eu.criteo.com/delivery/r/afr.php?z=Y9--wgABnC4KmuoZAAEuAZtRAfOyuFEmKgWRUQ&u=%7CaCyLL8vY83Vy%2FUm7AhWCIJk%2FCW2IhrnTTRsXplvxhzM%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_AM8iEE4GHx4XAZ8-c9e5LlJfMjehYPJbM0j2hknANCpMoZ3wmmJmKy5infGtQFhWVAqrZO9zye4-qm3qPD80bYeMMQfOHaRecjBTe3jPjAM_w54s_Q7qAquqAYzwNSnVVCCJKMuS7dauPR9u0cjL2JzIdVpIuSVLQhAvmKM7qgkELa9NtEBkUYnp6YxPL2yXKhHXld9mboOrm_NoX-ieITUAw-KEjzq1NNobjVsaxg-1Nhr8Hm5r6HzVjtD3UV1vKeFW33Y7UmDY5zW6Was3YBjNxECHobmw0TcmbOuENsD8eyLDX4Qlele8XJr4QIGEngCsHxEKoxHBeqCVm09c8FfTShEwWgCC5Vsht_x4r7QvJMhoy9klK7BKq8GN50mHgeIfBrUZUFJRahKVqAL9pkP3FtwvzE4EQh2v5vWvntRJqzzLiBqAwGCrA0RlQ3LgJGYGRvqLrGxa1hrcM8JFpgiigS2hLE5N5WZkuB1Udc0lRZjN_U6hKyY-yIBO20JqQS08A4g41e78vjqw7cotooU6fdRzMw22VSXiY93vd-xLwg-ooQNxU2w&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCG2mywr7fY664BpnU6wSB3ITQDsme0rFclaKX93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNTk4NTg4ODgwMDQ0MzY5OMgBCakC3nDN8XAcsj6oAwGqBIECT9ARXh0lwbU9MFHXwZWMFvf22o0bgl1oXLYe3SMCTPDscpdPEiYuZ6ZMaJd31U82mwD3ze9p-ACULjhUhhTD5_br1wESZpI3dhE5NJ8MbQkFR0_-GgwswwAHsj9ZSNztajzVXdHA0A33ZEAyOUU3w5YMjfQHltUmDJqiaDw7d21wKrpY3AmFggjIpoCNj3MFqicwQD_4-JDAwQjj_YpHiJCYTbZf17mVSAS2IRHpL2S1z04hUJxaQpCe2odN001RZq6UaK5bfxMYE9pgZCuKKt3pRyh9ieEWQ5SkQVeoVoEeFAHPML2S5iWcw68yxOVlFDrr3VqPdEk7UK3k2lv4nR6ABvrv4u2Tr7XwUaAGIagHpr4bqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQLYBwDSCA8IgOGAcBABMgLrAjoCgED6CwIIAYAMAdAVAYAXAQ%26num%3D1%26sig%3DAOD64_1Cq35fHmBhKDTU5nAm6vd7t8xyHw%26client%3Dca-pub-5985888800443698%26adurl%3D
178.250.0.138200 OK 0 B URL HTTP/2 ads.eu.criteo.com/delivery/r/afr.php?z=Y9--wgABnC4KmuoZAAEuAZtRAfOyuFEmKgWRUQ&u=%7CaCyLL8vY83Vy%2FUm7AhWCIJk%2FCW2IhrnTTRsXplvxhzM%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_AM8iEE4GHx4XAZ8-c9e5LlJfMjehYPJbM0j2hknANCpMoZ3wmmJmKy5infGtQFhWVAqrZO9zye4-qm3qPD80bYeMMQfOHaRecjBTe3jPjAM_w54s_Q7qAquqAYzwNSnVVCCJKMuS7dauPR9u0cjL2JzIdVpIuSVLQhAvmKM7qgkELa9NtEBkUYnp6YxPL2yXKhHXld9mboOrm_NoX-ieITUAw-KEjzq1NNobjVsaxg-1Nhr8Hm5r6HzVjtD3UV1vKeFW33Y7UmDY5zW6Was3YBjNxECHobmw0TcmbOuENsD8eyLDX4Qlele8XJr4QIGEngCsHxEKoxHBeqCVm09c8FfTShEwWgCC5Vsht_x4r7QvJMhoy9klK7BKq8GN50mHgeIfBrUZUFJRahKVqAL9pkP3FtwvzE4EQh2v5vWvntRJqzzLiBqAwGCrA0RlQ3LgJGYGRvqLrGxa1hrcM8JFpgiigS2hLE5N5WZkuB1Udc0lRZjN_U6hKyY-yIBO20JqQS08A4g41e78vjqw7cotooU6fdRzMw22VSXiY93vd-xLwg-ooQNxU2w&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCG2mywr7fY664BpnU6wSB3ITQDsme0rFclaKX93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNTk4NTg4ODgwMDQ0MzY5OMgBCakC3nDN8XAcsj6oAwGqBIECT9ARXh0lwbU9MFHXwZWMFvf22o0bgl1oXLYe3SMCTPDscpdPEiYuZ6ZMaJd31U82mwD3ze9p-ACULjhUhhTD5_br1wESZpI3dhE5NJ8MbQkFR0_-GgwswwAHsj9ZSNztajzVXdHA0A33ZEAyOUU3w5YMjfQHltUmDJqiaDw7d21wKrpY3AmFggjIpoCNj3MFqicwQD_4-JDAwQjj_YpHiJCYTbZf17mVSAS2IRHpL2S1z04hUJxaQpCe2odN001RZq6UaK5bfxMYE9pgZCuKKt3pRyh9ieEWQ5SkQVeoVoEeFAHPML2S5iWcw68yxOVlFDrr3VqPdEk7UK3k2lv4nR6ABvrv4u2Tr7XwUaAGIagHpr4bqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQLYBwDSCA8IgOGAcBABMgLrAjoCgED6CwIIAYAMAdAVAYAXAQ%26num%3D1%26sig%3DAOD64_1Cq35fHmBhKDTU5nAm6vd7t8xyHw%26client%3Dca-pub-5985888800443698%26adurl%3D
IP 178.250.0.138:0
GET /delivery/r/afr.php?z=Y9--wgABnC4KmuoZAAEuAZtRAfOyuFEmKgWRUQ&u=%7CaCyLL8vY83Vy%2FUm7AhWCIJk%2FCW2IhrnTTRsXplvxhzM%3D%7C&c1=JrbohDAzizBCiLKN5O6jHUI-6dJ9lV_AM8iEE4GHx4XAZ8-c9e5LlJfMjehYPJbM0j2hknANCpMoZ3wmmJmKy5infGtQFhWVAqrZO9zye4-qm3qPD80bYeMMQfOHaRecjBTe3jPjAM_w54s_Q7qAquqAYzwNSnVVCCJKMuS7dauPR9u0cjL2JzIdVpIuSVLQhAvmKM7qgkELa9NtEBkUYnp6YxPL2yXKhHXld9mboOrm_NoX-ieITUAw-KEjzq1NNobjVsaxg-1Nhr8Hm5r6HzVjtD3UV1vKeFW33Y7UmDY5zW6Was3YBjNxECHobmw0TcmbOuENsD8eyLDX4Qlele8XJr4QIGEngCsHxEKoxHBeqCVm09c8FfTShEwWgCC5Vsht_x4r7QvJMhoy9klK7BKq8GN50mHgeIfBrUZUFJRahKVqAL9pkP3FtwvzE4EQh2v5vWvntRJqzzLiBqAwGCrA0RlQ3LgJGYGRvqLrGxa1hrcM8JFpgiigS2hLE5N5WZkuB1Udc0lRZjN_U6hKyY-yIBO20JqQS08A4g41e78vjqw7cotooU6fdRzMw22VSXiY93vd-xLwg-ooQNxU2w&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCG2mywr7fY664BpnU6wSB3ITQDsme0rFclaKX93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItNTk4NTg4ODgwMDQ0MzY5OMgBCakC3nDN8XAcsj6oAwGqBIECT9ARXh0lwbU9MFHXwZWMFvf22o0bgl1oXLYe3SMCTPDscpdPEiYuZ6ZMaJd31U82mwD3ze9p-ACULjhUhhTD5_br1wESZpI3dhE5NJ8MbQkFR0_-GgwswwAHsj9ZSNztajzVXdHA0A33ZEAyOUU3w5YMjfQHltUmDJqiaDw7d21wKrpY3AmFggjIpoCNj3MFqicwQD_4-JDAwQjj_YpHiJCYTbZf17mVSAS2IRHpL2S1z04hUJxaQpCe2odN001RZq6UaK5bfxMYE9pgZCuKKt3pRyh9ieEWQ5SkQVeoVoEeFAHPML2S5iWcw68yxOVlFDrr3VqPdEk7UK3k2lv4nR6ABvrv4u2Tr7XwUaAGIagHpr4bqAeW2BuoB6qbsQKoB4OtsQKoB_-esQKoB9-fsQLYBwDSCA8IgOGAcBABMgLrAjoCgED6CwIIAYAMAdAVAYAXAQ%26num%3D1%26sig%3DAOD64_1Cq35fHmBhKDTU5nAm6vd7t8xyHw%26client%3Dca-pub-5985888800443698%26adurl%3D HTTP/1.1
Host: ads.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 14:35:46 GMT
content-type: text/html
server: Kestrel
cache-control: private, max-age=0, no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-max-age: 1000
cross-origin-resource-policy: cross-origin
p3p: CP='CUR ADM OUR NOR STA NID'
report-to: {"endpoints":[{"url":"https://csm.eu.criteo.net/heavyad?cppv=3&cpp=gj99I6aK136-tDjtf9gWjrbDMYjIRf4jM9GNlXgwDfCa2Wcm8bjRsf4Jq_3xgW39VV0yTA4fQR4lSrkK_JaxzeZCDvhUEI6lPziI9DLBN43zQ1xbU7GAO0AiNYAxZwiM-DhDPgOKbWlxv_iSIZwEUjKuJe1jx_Hugv8-GHBut4WdKfortdP1QllB4lttPQn4oAF89oRV0AUwXSbDkAWj6-aVqJxProqmbwX70xEfcouwEuFCIRCMAQu0M0iqFSSrnwDVXQ"}], "max_age": 86400}
link: <pix.eu.criteo.net>; rel=preconnect; crossorigin, <static.criteo.net>; rel=preconnect; crossorigin
server-processing-duration-in-ticks: 117990203
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2