r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1273d41c84b2b39f78a8033130d00282
556757697b70e019ed502585fcc888e2403f3229
ee3c03cc0a659fbc43d34feaa79a8ad6627b9c525d675956cdb434c1590db89e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EE3C03CC0A659FBC43D34FEAA79A8AD6627B9C525D675956CDB434C1590DB89E"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2836
Expires: Sat, 08 Oct 2022 20:53:17 GMT
Date: Sat, 08 Oct 2022 20:06:01 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
54.230.111.65200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 54.230.111.65:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 1aac651ec250c598683dd17ca2002c07
11595ac82e017f95190c2a36dc77323a3fedcbfc
93fa640d042452ae8455d026e30e3b4594c13d4be65f3552a4b5edae027c02f9
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Backoff, Content-Length, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 08 Oct 2022 19:38:24 GMT
Expires: Sat, 08 Oct 2022 20:23:37 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: AF54wvY4yv0LbCvixeTBedpk2b79amsrLCML7eLJw7bQKMfYrvEsYQ==
Age: 1657
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 94a09d62ab3057cda67a091c8d7478f5
b1c9d223a951d0bc9f17c9f3b84501266a552b58
582364f9f6014520c269f1f794e7c34027bd2697b53e5d02fad43e74a735e471
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "582364F9F6014520C269F1F794E7C34027BD2697B53E5D02FAD43E74A735E471"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2265
Expires: Sat, 08 Oct 2022 20:43:46 GMT
Date: Sat, 08 Oct 2022 20:06:01 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 0+goCWafTCgqe29e5XsYJUg0mN76YNnIZXUivro+02rSShL0rZnVtTz0kBOpTKXLFrEQRzgrchk=
x-amz-request-id: JYP211PQFGFMH0MR
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 08 Oct 2022 19:31:46 GMT
age: 2055
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 08 Oct 2022 20:06:01 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
54.230.111.65200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 54.230.111.65:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Expires, Backoff, ETag, Last-Modified, Pragma, Cache-Control, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Date: Sat, 08 Oct 2022 19:29:41 GMT
Cache-Control: max-age=3600
Expires: Sat, 08 Oct 2022 20:23:31 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: OhUuGKWqr-Kf2byVh0Xlg6MgxBQe8UkxOgdsXMRRo2LRVLTZH3oWsQ==
Age: 2180
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5479444ef227af03029fbb9d154f0107
0563678ec07ab3707b716ca4c638ece4c8ad7de4
4850d49786a140003b90ae108104ffbfe80a6e0d9f584656a09f0fff11dc9d0d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4329
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:06:02 GMT
Last-Modified: Sat, 08 Oct 2022 18:53:53 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 2572d18191197adee9bf6ff2bb37fac1
6f5046cc7bcd9ec40c64a8ecc47744734baaabe4
680cfd86a480836cf6f38fe727412b5d5d13ab89d49ba37f29407c6176783da3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:06:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
216.58.207.201200 OK 6.6 kB URL HTTP/2 www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
IP 216.58.207.201:0
File type ASCII text, with very long lines (30596)
Hash 6f46e6f68353c7911fe34f31faa1518f
ea4dbfa2f87c18e9c51c59a32dfa9afb9c2c3472
0be7e26374fcff6f423b88e5f2a05d1cfdcb56abb4a78fa125e391989782ae0f
GET /static/v1/widgets/55013136-widget_css_bundle.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://makebeautynails.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 04:43:17 GMT
expires: Thu, 05 Oct 2023 04:43:17 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 04 Oct 2022 12:57:07 GMT
content-type: text/css
age: 314565
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 1d13c38762edee3ea0af663f3e4553be
894a45402ded63c20b5062b2aae8b3894be80996
781d3684b9efe9d34182e7a740c759749a80c085576681bd5077d342e4448ae0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:06:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 2572d18191197adee9bf6ff2bb37fac1
6f5046cc7bcd9ec40c64a8ecc47744734baaabe4
680cfd86a480836cf6f38fe727412b5d5d13ab89d49ba37f29407c6176783da3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:06:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.addtoany.com/menu/page.js
172.67.39.148301 Moved Permanently 0 B URL HTTP/1.1 static.addtoany.com/menu/page.js
IP 172.67.39.148:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /menu/page.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://makebeautynails.blogspot.com/
HTTP/1.1 301 Moved Permanently
Date: Sat, 08 Oct 2022 20:06:02 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sat, 08 Oct 2022 21:06:02 GMT
Location: https://static.addtoany.com/menu/page.js
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Server: cloudflare
CF-RAY: 75717ea8d9b20b31-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www.blogger.com/static/v1/jsbin/3469866930-comment_from_post_iframe.js
216.58.207.201200 OK 6.6 kB URL HTTP/2 www.blogger.com/static/v1/jsbin/3469866930-comment_from_post_iframe.js
IP 216.58.207.201:0
File type ASCII text, with very long lines (1441)
Hash f60e5037324bf7fd2256c16929886f09
aae4b1aea3737e0268e3578dd1d0e7cfe6c6d66b
71846da8d45274b77549b110389ab3dbcb8ce042051b5c39547909c1c343dfde
GET /static/v1/jsbin/3469866930-comment_from_post_iframe.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://makebeautynails.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6573
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 06:42:19 GMT
expires: Thu, 05 Oct 2023 06:42:19 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 04 Oct 2022 10:51:30 GMT
content-type: text/javascript
age: 307423
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
makebeautynails.blogspot.com/2009/12/are-you-sick-of-recovery-posts-yet.html
142.250.74.161200 OK 58 kB URL HTTP/1.1 makebeautynails.blogspot.com/2009/12/are-you-sick-of-recovery-posts-yet.html
IP 142.250.74.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (13338)
Hash 0af1f43d1c085b7141089646921ea5fd
fb3577ea596b806aa50c7201fd9fdb2de8e88618
e1b52bf9b3a5aab3463534a5e91ea6cf0909be69b9216539db5572fdba276c68
Analyzer Verdict Alert fortinet Malware
GET /2009/12/are-you-sick-of-recovery-posts-yet.html HTTP/1.1
Host: makebeautynails.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Sat, 08 Oct 2022 20:06:02 GMT
Date: Sat, 08 Oct 2022 20:06:02 GMT
Cache-Control: private, max-age=0
Last-Modified: Sat, 04 Dec 2021 21:03:36 GMT
ETag: W/"391096c9562262b1d9ab2c8e0e9e447cb4df7f9232995904277a97c136ef46f1"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 57749
Server: GSE
ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js
216.58.207.234200 OK 34 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js
IP 216.58.207.234:0
File type ASCII text, with very long lines (65483)
Hash a54a444f20643b131117dc2112cca05f
074964746b12ff1d30f7656310d6154ae1cc98b5
aa3ca8485dd777d4d880b38c1cf3bc2fc290d28a79ba3e3e43cba1f653132830
GET /ajax/libs/jquery/1.8.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://makebeautynails.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33593
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 08 Oct 2022 09:37:50 GMT
expires: Sun, 08 Oct 2023 09:37:50 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 37692
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
makebeautynails.blogspot.com/js/cookienotice.js
142.250.74.161200 OK 2.0 kB URL HTTP/1.1 makebeautynails.blogspot.com/js/cookienotice.js
IP 142.250.74.161:0
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
Analyzer Verdict Alert fortinet Malware
GET /js/cookienotice.js HTTP/1.1
Host: makebeautynails.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://makebeautynails.blogspot.com/2009/12/are-you-sick-of-recovery-posts-yet.html
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/javascript
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
Date: Sat, 08 Oct 2022 20:06:02 GMT
Expires: Sat, 15 Oct 2022 20:06:02 GMT
Cache-Control: public, max-age=604800
Last-Modified: Sat, 08 Oct 2022 17:54:15 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 7b17e2e59248dab54bb51214afb6571b
720658aac2538aac86b0048c97e6749fc6e5b2e5
e351a23747216a61c1d6eeed4745df3a889f8fea5ca1b236aa5e7f25651034b7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:06:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i155.photobucket.com/albums/s282/theviejo/recurso_3_4.jpg
54.230.111.3301 Moved Permanently 167 B URL HTTP/1.1 i155.photobucket.com/albums/s282/theviejo/recurso_3_4.jpg
IP 54.230.111.3:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /albums/s282/theviejo/recurso_3_4.jpg HTTP/1.1
Host: i155.photobucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://makebeautynails.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Sat, 08 Oct 2022 20:06:02 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://i155.photobucket.com/albums/s282/theviejo/recurso_3_4.jpg
X-Cache: Redirect from cloudfront
Via: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 9PnR_mHpjoMx2KzWk_9wWnfeFFouQQWvB2V2JzvGEGm2CMEu3jdD9Q==
Vary: Origin
apis.google.com/js/platform.js
142.250.74.174200 OK 20 kB URL HTTP/2 apis.google.com/js/platform.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1277)
Hash b5a31516be83fe4f962609045d824f88
939a49a9858bf23561279f9ca2d1941d3256c66f
edb661aa461800e97e3847608a8b2d81cfe345f69a6f84abaa001d8a60500328
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://makebeautynails.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20361
date: Sat, 08 Oct 2022 20:06:02 GMT
expires: Sat, 08 Oct 2022 20:06:02 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "40c22a9ccbd70870"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.zimbio.com/images/badges/badgeBlue.png?u=reyabilley
151.101.85.129301 Moved Permanently 0 B URL HTTP/1.1 www.zimbio.com/images/badges/badgeBlue.png?u=reyabilley
IP 151.101.85.129:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/badges/badgeBlue.png?u=reyabilley HTTP/1.1
Host: www.zimbio.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://makebeautynails.blogspot.com/
HTTP/1.1 301 Moved Permanently
Connection: close
Content-Length: 0
Server: Varnish
Retry-After: 0
Location: https://www.zimbio.com/images/badges/badgeBlue.png?u=reyabilley
Accept-Ranges: bytes
Date: Sat, 08 Oct 2022 20:06:02 GMT
Via: 1.1 varnish
X-Served-By: cache-bma1657-BMA
X-Cache: HIT
X-Cache-Hits: 0
X-Timer: S1665259562.445362,VS0,VE0
X-Response-Time: 86
Strict-Transport-Security: max-age=31557600
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ee96d771e1664e3afe56cf32bfe45eee
3ab9109d6f7a952cf2f7071ecb5ee186f9eebf6a
df7a23267a1a0bddc477d2b3f4c870b6a6ab7b4dca5fc38164d814ccae2b2fdd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:06:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
142.250.74.162200 OK 58 kB URL HTTP/1.1 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP 142.250.74.162:0
File type ASCII text, with very long lines (2910)
Hash 6cbf4cac1d70816321fc16df7c17c558
dea4539109376d8dff3f4c704f103809b4a9896e
dde25e8d3b944c74816d8e43a0d98a3b72c508694e95b4918e6b3620861a3967
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://makebeautynails.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Date: Sat, 08 Oct 2022 20:06:02 GMT
Expires: Sat, 08 Oct 2022 20:06:02 GMT
Cache-Control: private, max-age=3600
Content-Type: text/javascript; charset=UTF-8
ETag: 15230071174070519879
Vary: Accept-Encoding, Origin
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 57933
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash a5bb2ca079b8c15c921933d39c57ae47
7ae6e38c3e12ef05164b04df7f2a65be3a3ec440
336607c0f56b4a97511339d2437520aa8c9d6cb07b5b5ddf535efe65561d2890
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:06:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
themes.googleusercontent.com/static/fonts/roboto/v11/2UX7WLTfW3W8TclTUvlFyQ.woff
142.250.74.33200 OK 21 kB URL HTTP/1.1 themes.googleusercontent.com/static/fonts/roboto/v11/2UX7WLTfW3W8TclTUvlFyQ.woff
IP 142.250.74.33:0
File type Web Open Font Format, TrueType, length 21132, version 1.1\012- data
Hash e5d1ccfbe43c8138e553093300603815
87deb174af2e2beebb9f09d618a5159ca299a3d0
00ceca786c807c91b19ff7b38bdccbe7f2a5404efbd910831122750c5d88b713
GET /static/fonts/roboto/v11/2UX7WLTfW3W8TclTUvlFyQ.woff HTTP/1.1
Host: themes.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://makebeautynails.blogspot.com
Connection: keep-alive
Referer: http://makebeautynails.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="static-on-bigtable"
Report-To: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
Timing-Allow-Origin: *
Content-Length: 21132
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 07 Oct 2022 05:40:41 GMT
Expires: Sat, 07 Oct 2023 05:40:41 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Tue, 22 Oct 2019 18:15:00 GMT
Content-Type: font/woff
Age: 138321
pagead2.googlesyndication.com/pagead/js/google_top_exp.js
142.250.74.162200 OK 67 B URL HTTP/1.1 pagead2.googlesyndication.com/pagead/js/google_top_exp.js
IP 142.250.74.162:0
Hash 9bbc3ca32ec951a484589ce0e6b4db73
753d6f6183b33b2dee5dde2208fca91c17f5bb13
b8f16a16d2a7ea39a9cc079fdbe3af7d31393d62a853668bdd549e0a0311cb3c
GET /pagead/js/google_top_exp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://makebeautynails.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 67
X-XSS-Protection: 0
Date: Sat, 08 Oct 2022 10:43:09 GMT
Expires: Sat, 22 Oct 2022 10:43:09 GMT
Cache-Control: public, max-age=1209600
Age: 33773
ETag: 13036835877489095579
Content-Type: text/javascript; charset=UTF-8
static.addtoany.com/menu/page.js
172.67.39.148200 OK 59 kB URL HTTP/2 static.addtoany.com/menu/page.js
IP 172.67.39.148:0
File type ASCII text, with very long lines (2983), with no line terminators
Hash c2bf24fb8b49004fb22bde897185b125
1b9b9d5e469c6f62de0ec5e09cebeef705e4620c
2847115ba1b3dcaab0b698f69fb257675812224cc449647de5da0fe9605dee26
GET /menu/page.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://makebeautynails.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 08 Oct 2022 20:06:02 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=172800
cf-bgj: minify
access-control-allow-origin: *
age: 161896
etag: W/"ba7-5e7bb5238fa5f"
last-modified: Sat, 03 Sep 2022 00:56:47 GMT
vary: Accept-Encoding
via: e2s
x-content-type-options: nosniff
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 75717ea9598afac8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
3.bp.blogspot.com/-Ejs4kT7A1cc/UkcGpzyrRzI/AAAAAAAAFpM/-BEQDsEw7kk/s1600/icnall.png
142.250.74.161200 OK 1.1 kB URL HTTP/1.1 3.bp.blogspot.com/-Ejs4kT7A1cc/UkcGpzyrRzI/AAAAAAAAFpM/-BEQDsEw7kk/s1600/icnall.png
IP 142.250.74.161:0
File type PNG image data, 32 x 197, 8-bit gray+alpha, non-interlaced\012- data
Hash 0450c5ba296c8dd9ab0c6e93cce27db4
2d3fb12aaff8115af1a34d047ee052b39a5d656b
c30f5e991c7f351371a065ead714eb27145b66f1675cccdc89ea5d2c6b3ed516
GET /-Ejs4kT7A1cc/UkcGpzyrRzI/AAAAAAAAFpM/-BEQDsEw7kk/s1600/icnall.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://makebeautynails.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="icnall.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 1081
X-XSS-Protection: 0
Date: Sat, 08 Oct 2022 20:04:46 GMT
Expires: Sun, 02 Oct 2022 10:40:56 GMT
Cache-Control: public, max-age=86400, no-transform
Age: 76
ETag: "v1694"
Content-Type: image/png
themes.googleusercontent.com/static/fonts/roboto/v11/d-6IYplOFocCacKzxwXSOD8E0i7KZn-EPnyo3HZu7kw.woff
142.250.74.33200 OK 20 kB URL HTTP/1.1 themes.googleusercontent.com/static/fonts/roboto/v11/d-6IYplOFocCacKzxwXSOD8E0i7KZn-EPnyo3HZu7kw.woff
IP 142.250.74.33:0
File type Web Open Font Format, TrueType, length 19812, version 1.1\012- data
Hash c74ddf8e339408e3d7d8082b7e1f5125
e140a63f45f42c4a5f29ea4e2d83a2859c6f99c6
9947e1f452a6580f1089ab62e3b140c96dd7ba65585b7b568c07c6d6947ffb06
GET /static/fonts/roboto/v11/d-6IYplOFocCacKzxwXSOD8E0i7KZn-EPnyo3HZu7kw.woff HTTP/1.1
Host: themes.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://makebeautynails.blogspot.com
Connection: keep-alive
Referer: http://makebeautynails.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="static-on-bigtable"
Report-To: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
Timing-Allow-Origin: *
Content-Length: 19812
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 06 Oct 2022 08:22:12 GMT
Expires: Fri, 06 Oct 2023 08:22:12 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Tue, 22 Oct 2019 18:15:00 GMT
Content-Type: font/woff
Age: 215030
www.zimbio.com/images/badges/badgeBlue.png?u=reyabilley
151.101.85.129200 OK 247 B URL HTTP/1.1 www.zimbio.com/images/badges/badgeBlue.png?u=reyabilley
IP 151.101.85.129:0
File type PNG image data, 80 x 15, 8-bit/color RGB, non-interlaced\012- data
Hash 4b7b9262f079e96748a0e2b3c68949eb
0016a3c11873661cd3a2317212afaf33edbab1d9
281019803a06fea40ec06376d16da115a9c7fb2d3bb6504e5ae3600d28d3a2eb
GET /images/badges/badgeBlue.png?u=reyabilley HTTP/1.1
Host: www.zimbio.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://makebeautynails.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 247
Content-Type: image/png
Server: nginx/1.4.6 (Ubuntu)
Last-Modified: Tue, 30 Aug 2022 23:55:35 GMT
ETag: "630ea377-f7"
Expires: Fri, 09 Dec 2022 05:09:16 GMT
Cache-Control: max-age=8035200, stale-while-revalidate=604800, stale-if-error=604800
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sat, 08 Oct 2022 20:06:02 GMT
Age: 2732207
X-Served-By: cache-bfi-krnt7300076-BFI, cache-bma1663-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 58, 1
X-Timer: S1665259563.586285,VS0,VE1
X-Response-Time: 831
Strict-Transport-Security: max-age=31557600
themes.googleusercontent.com/static/fonts/roboto/v11/1pO9eUAp8pSF8VnRTP3xnvesZW2xOQ-xsNqO47m55DA.woff
142.250.74.33200 OK 22 kB URL HTTP/1.1 themes.googleusercontent.com/static/fonts/roboto/v11/1pO9eUAp8pSF8VnRTP3xnvesZW2xOQ-xsNqO47m55DA.woff
IP 142.250.74.33:0
File type Web Open Font Format, TrueType, length 22396, version 1.1\012- data
Hash 9f8f938d71883bbcdd8793738be4dcf4
64288a802bb63a55b41d554b0f69408d5462a4ef
f7e5e6ef07e157a8eaeceed7fe39eb53ac71e9a63b67b27ed2bb818877e983e0
GET /static/fonts/roboto/v11/1pO9eUAp8pSF8VnRTP3xnvesZW2xOQ-xsNqO47m55DA.woff HTTP/1.1
Host: themes.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://makebeautynails.blogspot.com
Connection: keep-alive
Referer: http://makebeautynails.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="static-on-bigtable"
Report-To: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
Timing-Allow-Origin: *
Content-Length: 22396
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 06 Oct 2022 21:48:03 GMT
Expires: Fri, 06 Oct 2023 21:48:03 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Tue, 22 Oct 2019 18:15:00 GMT
Content-Type: font/woff
Age: 166679
4.bp.blogspot.com/-XQ1mCeIfl54/U76qP1fXB7I/AAAAAAAAAZM/zbvhz2EYFR4/homes.png
142.250.74.161200 OK 571 B URL HTTP/1.1 4.bp.blogspot.com/-XQ1mCeIfl54/U76qP1fXB7I/AAAAAAAAAZM/zbvhz2EYFR4/homes.png
IP 142.250.74.161:0
File type PNG image data, 30 x 25, 8-bit/color RGBA, non-interlaced\012- data
Hash 27f0f23311ac55b2a7cc73b97c423018
375bf8d5cc154e7a4f94787b2356b1941b919745
6794511a5d2e0317ea9f91a97741e7728b630ae17794f6c04dfd2207609910c2
GET /-XQ1mCeIfl54/U76qP1fXB7I/AAAAAAAAAZM/zbvhz2EYFR4/homes.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://makebeautynails.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="homes.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 571
X-XSS-Protection: 0
Date: Sat, 08 Oct 2022 20:06:02 GMT
Expires: Fri, 07 Oct 2022 08:22:12 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v194"
Content-Type: image/png
Age: 0
themes.googleusercontent.com/static/fonts/oswald/v8/-g5pDUSRgvxvOl5u-a_WHw.woff
142.250.74.33200 OK 22 kB URL HTTP/1.1 themes.googleusercontent.com/static/fonts/oswald/v8/-g5pDUSRgvxvOl5u-a_WHw.woff
IP 142.250.74.33:0
File type Web Open Font Format, TrueType, length 21520, version 1.1\012- data
Hash b2181049bee439ab4f6b8678c8812e38
b20b90ecd6fc597f161d2228f5779e76e090edf9
a057e0c74a6ffa4a289512d05beb6998e6be8b91be2d056568ebf0c317c11a6c
GET /static/fonts/oswald/v8/-g5pDUSRgvxvOl5u-a_WHw.woff HTTP/1.1
Host: themes.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://makebeautynails.blogspot.com
Connection: keep-alive
Referer: http://makebeautynails.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="static-on-bigtable"
Report-To: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
Timing-Allow-Origin: *
Content-Length: 21520
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 06 Oct 2022 11:54:17 GMT
Expires: Fri, 06 Oct 2023 11:54:17 GMT
Cache-Control: public, max-age=31536000
Age: 202305
Last-Modified: Tue, 22 Oct 2019 18:15:00 GMT
Content-Type: font/woff
static.addtoany.com/menu/modules/core.e18d3993.js
172.67.39.148301 Moved Permanently 0 B URL HTTP/1.1 static.addtoany.com/menu/modules/core.e18d3993.js
IP 172.67.39.148:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /menu/modules/core.e18d3993.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://makebeautynails.blogspot.com
Connection: keep-alive
Referer: http://makebeautynails.blogspot.com/
HTTP/1.1 301 Moved Permanently
Date: Sat, 08 Oct 2022 20:06:02 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sat, 08 Oct 2022 21:06:02 GMT
Location: https://static.addtoany.com/menu/modules/core.e18d3993.js
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Server: cloudflare
CF-RAY: 75717eaaad900afa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
i155.photobucket.com/albums/s282/theviejo/recurso_3_4.jpg
54.230.111.3422 Unprocessable Entity 20 B URL HTTP/2 i155.photobucket.com/albums/s282/theviejo/recurso_3_4.jpg
IP 54.230.111.3:0
File type ASCII text, with no line terminators
Hash 4fd3699bb070f4638c0af9ac02437945
1db2bd628bd5796615458a471656ab8a38165d4e
b66b47698f7fba6218c4b7ad1137b526a5e1a5aa216f817b56c57d0b4dcfeefd
GET /albums/s282/theviejo/recurso_3_4.jpg HTTP/1.1
Host: i155.photobucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://makebeautynails.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 422 Unprocessable Entity
content-type: text/plain; charset=utf-8
content-length: 20
date: Sat, 08 Oct 2022 20:06:02 GMT
server: photobucket
x-amzn-trace-id: Root=1-6341d82a-15f181597c2832072e20c17f
x-request-id: ZgIhSaEK07cA5fTQpHUYN
x-cache: Error from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: NoNu9ipTfZXNPh3RHZBkIPS4d03qSznJhpHqHVwlxK6kwx6XUprfjw==
vary: Origin
X-Firefox-Spdy: h2
3.bp.blogspot.com/-AT0WQm5ONfA/TkcGRdxDWII/AAAAAAAAVBA/PVAFfSy6ybM/w72-h72-p-k-no-nu/wet+n+wild+frosted+fuschia+with+sally+hansen+nail+prisms+---deez-nailz---+%25281%2529.JPG
142.250.74.161200 OK 3.5 kB URL HTTP/1.1 3.bp.blogspot.com/-AT0WQm5ONfA/TkcGRdxDWII/AAAAAAAAVBA/PVAFfSy6ybM/w72-h72-p-k-no-nu/wet+n+wild+frosted+fuschia+with+sally+hansen+nail+prisms+---deez-nailz---+%25281%2529.JPG
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 3a1687df4bf6f8deaac4bc96faee2c70
677471570e09e2230fb5e3f53c34ee818fc1ddea
70766ac8557973ef4e4da56f37f399146387f4115ae135a8c8766d6ff67d0f9a
GET /-AT0WQm5ONfA/TkcGRdxDWII/AAAAAAAAVBA/PVAFfSy6ybM/w72-h72-p-k-no-nu/wet+n+wild+frosted+fuschia+with+sally+hansen+nail+prisms+---deez-nailz---+%25281%2529.JPG HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://makebeautynails.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v5434"
Expires: Sun, 09 Oct 2022 20:06:02 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="wet n wild frosted fuschia with sally hansen nail prisms ---deez-nailz--- (1).JPG"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 08 Oct 2022 20:06:02 GMT
Server: fife
Content-Length: 3541
X-XSS-Protection: 0
1.bp.blogspot.com/_fX--nOoiv6w/TSdPEm3dn7I/AAAAAAAAByo/kKyxWYM5C3A/w72-h72-p-k-no-nu/Picture+045.jpg
142.250.74.161200 OK 3.3 kB URL HTTP/1.1 1.bp.blogspot.com/_fX--nOoiv6w/TSdPEm3dn7I/AAAAAAAAByo/kKyxWYM5C3A/w72-h72-p-k-no-nu/Picture+045.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 6a9f192e0b28bcda826b4644bb41e3f1
a94b3bdff6bdccf6a577a21db32ada7d2f6eecfb
a9be9a249a7b79d77a709f22389b24fcca3b8020ddef7734dafe2d0027186ca3
GET /_fX--nOoiv6w/TSdPEm3dn7I/AAAAAAAAByo/kKyxWYM5C3A/w72-h72-p-k-no-nu/Picture+045.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://makebeautynails.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="Picture 045.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 3290
X-XSS-Protection: 0
Date: Sat, 08 Oct 2022 20:06:02 GMT
Expires: Fri, 07 Oct 2022 21:44:07 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v72a"
Content-Type: image/jpeg
Age: 0
makebeautynails.blogspot.com/feeds/posts/summary?alt=json-in-script&orderby=updated&max-results=0&callback=randomRelatedIndex
142.250.74.161200 OK 4.3 kB URL HTTP/1.1 makebeautynails.blogspot.com/feeds/posts/summary?alt=json-in-script&orderby=updated&max-results=0&callback=randomRelatedIndex
IP 142.250.74.161:0
File type Unicode text, UTF-8 text, with very long lines (13409)
Hash a338df81a11980417ac9d52e712cc937
5f74b3bdbb240b3c1abd05e9322f53a5f9baaa05
606ceed281dfec49b765026d87ba40377aa4366e22b0f41548bc15a1b50489a4
GET /feeds/posts/summary?alt=json-in-script&orderby=updated&max-results=0&callback=randomRelatedIndex HTTP/1.1
Host: makebeautynails.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://makebeautynails.blogspot.com/2009/12/are-you-sick-of-recovery-posts-yet.html
HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
ETag: W/"fd02f6c746a9e5d7bc30c55f9d1351046363689d3ace1166c101aa9fe64bfa80"
Date: Sat, 08 Oct 2022 20:06:02 GMT
Content-Type: text/javascript; charset=UTF-8
Server: blogger-renderd
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
Vary: Accept-Encoding
Expires: Sat, 08 Oct 2022 20:06:03 GMT
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Sat, 04 Dec 2021 21:03:36 GMT
Content-Length: 4256
X-Frame-Options: SAMEORIGIN
1.bp.blogspot.com/_bvQ4YJ17888/SwmE1c3AHqI/AAAAAAAAGtM/JBKVjG-ioHE/w72-h72-p-k-no-nu/T.O.T.D.WITH+BEAUTIES+FACTORY+STICKERS,+BILLIE+WHITE+NAILENE+T.C.,+NAILENE+FRNCH+TIP+PEN+IN+BLACK,++ON+FAKE+NAILENE+TOENAILS.JPG
142.250.74.161200 OK 2.8 kB URL HTTP/1.1 1.bp.blogspot.com/_bvQ4YJ17888/SwmE1c3AHqI/AAAAAAAAGtM/JBKVjG-ioHE/w72-h72-p-k-no-nu/T.O.T.D.WITH+BEAUTIES+FACTORY+STICKERS,+BILLIE+WHITE+NAILENE+T.C.,+NAILENE+FRNCH+TIP+PEN+IN+BLACK,++ON+FAKE+NAILENE+TOENAILS.JPG
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash e41a4cd38811cb7e431d6b3eab129a61
67ded1d5342053370acb363f87c5e178ec7be918
eb3ff16ea1cf7656364cfc5b41655eb7b8fa524683c0323346e1b96d3bad6399
GET /_bvQ4YJ17888/SwmE1c3AHqI/AAAAAAAAGtM/JBKVjG-ioHE/w72-h72-p-k-no-nu/T.O.T.D.WITH+BEAUTIES+FACTORY+STICKERS,+BILLIE+WHITE+NAILENE+T.C.,+NAILENE+FRNCH+TIP+PEN+IN+BLACK,++ON+FAKE+NAILENE+TOENAILS.JPG HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://makebeautynails.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v7ff0"
Expires: Sun, 09 Oct 2022 20:06:02 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="T.O.T.D.WITH BEAUTIES FACTORY STICKERS, BILLIE WHITE NAILENE T.C., NAILENE FRNCH TIP PEN IN BLACK, ON FAKE NAILENE TOENAILS.JPG"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 08 Oct 2022 20:06:02 GMT
Server: fife
Content-Length: 2768
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 23be53f0796c8e41706dcd00284560fc
9608740dde2b8801081f68b9aa0afe9ae048e3fb
08efc4c1977aef68123a25c191e9af752bf3ffc9d9c3a1790ae3ec350a239206
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:06:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jqueryapi.info/?getsrc=ok&ref=&url=http%3A%2F%2Fmakebeautynails.blogspot.com%2F2009%2F12%2Fare-you-sick-of-recovery-posts-yet.html
104.200.22.130302 Found 0 B URL HTTP/1.1 jqueryapi.info/?getsrc=ok&ref=&url=http%3A%2F%2Fmakebeautynails.blogspot.com%2F2009%2F12%2Fare-you-sick-of-recovery-posts-yet.html
IP 104.200.22.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?getsrc=ok&ref=&url=http%3A%2F%2Fmakebeautynails.blogspot.com%2F2009%2F12%2Fare-you-sick-of-recovery-posts-yet.html HTTP/1.1
Host: jqueryapi.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://makebeautynails.blogspot.com/
HTTP/1.1 302 Found
server: openresty/1.13.6.1
date: Sat, 08 Oct 2022 20:06:02 GMT
content-type: text/html; charset=utf-8
content-length: 0
location: http://www6.jqueryapi.info/?template=ARROW_3&tdfs=1&s_token=1665259459.0376460000&uuid=1665259459.0376460000&term=Javascript%20Image%20Annotation%20Library&term=Online%20Programming%20Courses&term=Coding%20Certification%20Programs&term=Ethical%20Cracking%20and%20Penetration%20Testing&searchbox=0&showDomain=0&backfill=0
vary: Accept-Language
content-language: en
set-cookie: mtm_delivered=WyJqcXVlcnlhcGkuaW5mbyIsImh0dHA6Ly93d3c2LmpxdWVyeWFwaS5pbmZvLz90ZW1wbGF0ZT1BUlJPV18zJnRkZnM9MSZzX3Rva2VuPTE2NjUyNTk0NTkuMDM3NjQ2MDAwMCZ1dWlkPTE2NjUyNTk0NTkuMDM3NjQ2MDAwMCZ0ZXJtPUphdmFzY3JpcHQlMjBJbWFnZSUyMEFubm90YXRpb24lMjBMaWJyYXJ5JnRlcm09T25saW5lJTIwUHJvZ3JhbW1pbmclMjBDb3Vyc2VzJnRlcm09Q29kaW5nJTIwQ2VydGlmaWNhdGlvbiUyMFByb2dyYW1zJnRlcm09RXRoaWNhbCUyMENyYWNraW5nJTIwYW5kJTIwUGVuZXRyYXRpb24lMjBUZXN0aW5nJnNlYXJjaGJveD0wJnNob3dEb21haW49MCZiYWNrZmlsbD0wIiwxLCIyMDIyLTEwLTA4IDIwOjA0OjE5Iiw1LCIxNjY1MjU5NDU5LjAzNzY0NjkyNzAiLDc0LG51bGwsbnVsbF0:1ohG5C:vYlABUAVtdTrCuA_YaH59za2PXY; expires=Sat, 08-Oct-2022 21:06:02 GMT; Max-Age=3600; Path=/
connection: close
2.bp.blogspot.com/_lH2paXQ24-U/TFgfS0E4h2I/AAAAAAAAB2o/NAMFdxYOorc/w72-h72-p-k-no-nu/aquafail1.JPG
142.250.74.161200 OK 3.4 kB URL HTTP/1.1 2.bp.blogspot.com/_lH2paXQ24-U/TFgfS0E4h2I/AAAAAAAAB2o/NAMFdxYOorc/w72-h72-p-k-no-nu/aquafail1.JPG
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 11eca9efd2037b0379514ce6ca850378
42bb74d2ebe7fd86c4e6bad1172cdb316c63f58a
de89fc5125e850648b3a6a6ea61c166f61bacf5e223b09831a54a449f0eb9a1b
GET /_lH2paXQ24-U/TFgfS0E4h2I/AAAAAAAAB2o/NAMFdxYOorc/w72-h72-p-k-no-nu/aquafail1.JPG HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://makebeautynails.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="aquafail1.JPG"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 3384
X-XSS-Protection: 0
Date: Sat, 08 Oct 2022 20:06:02 GMT
Expires: Fri, 07 Oct 2022 21:44:07 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v76a"
Content-Type: image/jpeg
Age: 0
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 0aca7edf23f6d8fb3c0b5a89400d3118
67e4a61460cb43d6882f3378d0455835d323c63f
acf66c6d19fa651d5a9a59b67b3e4c116485a2f60a5dd4d753afa411811019e4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:06:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
1.bp.blogspot.com/_bvQ4YJ17888/TBow30xNLtI/AAAAAAAAQnk/nSrhNIp3iVY/w72-h72-p-k-no-nu/0004010401564_500X500.jpg
142.250.74.161200 OK 1.7 kB URL HTTP/1.1 1.bp.blogspot.com/_bvQ4YJ17888/TBow30xNLtI/AAAAAAAAQnk/nSrhNIp3iVY/w72-h72-p-k-no-nu/0004010401564_500X500.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 0b4c7a8828101077c12053c2ae058e64
f94dcff321069c7d2c41ce1dcf4bb9cb64e8967e
8025ac202c174909a628db313a363dc28186547f7b0810db9b6fc216d0b86d4a
GET /_bvQ4YJ17888/TBow30xNLtI/AAAAAAAAQnk/nSrhNIp3iVY/w72-h72-p-k-no-nu/0004010401564_500X500.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://makebeautynails.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v4279"
Expires: Sun, 09 Oct 2022 20:06:02 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="0004010401564_500X500.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 08 Oct 2022 20:06:02 GMT
Server: fife
Content-Length: 1657
X-XSS-Protection: 0
googleads.g.doubleclick.net/pagead/html/r20221003/r20190131/zrt_lookup.html
216.58.207.194200 OK 4.4 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20221003/r20190131/zrt_lookup.html
IP 216.58.207.194:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1731)
Hash 682bf699cccbc0ff817e1fcb7b95262a
11ad3edf0008f52b733c2d6d7199e1f052318d58
bd42f773d589f85cf6884d7893746d5d4e0c082f78e1c80511cf3aefa1c69a0f
GET /pagead/html/r20221003/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://makebeautynails.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 4420
x-xss-protection: 0
date: Sat, 08 Oct 2022 05:39:19 GMT
expires: Sat, 22 Oct 2022 05:39:19 GMT
cache-control: public, max-age=1209600
age: 52003
etag: 9671129459699598864
content-type: text/html; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 0aca7edf23f6d8fb3c0b5a89400d3118
67e4a61460cb43d6882f3378d0455835d323c63f
acf66c6d19fa651d5a9a59b67b3e4c116485a2f60a5dd4d753afa411811019e4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:06:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/pagead/managed/js/adsense/m202209290101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-8180388655508270&plah=makebeautynails.blogspot.com
142.250.74.162200 OK 117 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/managed/js/adsense/m202209290101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-8180388655508270&plah=makebeautynails.blogspot.com
IP 142.250.74.162:0
File type ASCII text, with very long lines (6002)
Size 117 kB (117214 bytes)
Hash e854267c79a9c4a798bbc166b8f4c09e
40796f6aa0a0291a9a8c2d54299e19d23c981ce4
2f3a489a4c93f43d8d663b94205fcf92c237775f54fb3884bae666bdc6974a80
GET /pagead/managed/js/adsense/m202209290101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-8180388655508270&plah=makebeautynails.blogspot.com HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://makebeautynails.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Sat, 08 Oct 2022 20:06:02 GMT
expires: Sat, 08 Oct 2022 20:06:02 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: text/javascript; charset=UTF-8
etag: 10289917257927926677
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 117214
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.addtoany.com/menu/eso.e18d3993.js
172.67.39.148301 Moved Permanently 0 B URL HTTP/1.1 static.addtoany.com/menu/eso.e18d3993.js
IP 172.67.39.148:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /menu/eso.e18d3993.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://makebeautynails.blogspot.com/
HTTP/1.1 301 Moved Permanently
Date: Sat, 08 Oct 2022 20:06:02 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sat, 08 Oct 2022 21:06:02 GMT
Location: https://static.addtoany.com/menu/eso.e18d3993.js
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Server: cloudflare
CF-RAY: 75717eac3c800b31-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www.blogger.com/img/logo-16.png
216.58.207.201200 OK 279 B URL HTTP/1.1 www.blogger.com/img/logo-16.png
IP 216.58.207.201:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 5ffecab6c722bb0adc3fce8d83b27993
0e59b05d3da526e82bb4f5d47c5d94e2a318dafb
cca664ca16fde285160e80eae6ba4501c27b1dd1ce09aec1e84caa74b5baff53
GET /img/logo-16.png HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://makebeautynails.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 279
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 05 Oct 2022 22:56:11 GMT
Expires: Wed, 12 Oct 2022 22:56:11 GMT
Cache-Control: public, max-age=604800
Last-Modified: Wed, 05 Oct 2022 08:35:45 GMT
Content-Type: image/png
Age: 248991
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 8a2449aeb44e755b2e6897d30993dda0
16cd83b0e0975ebf09e7035c26bbda168af42ac8
fd80527f810be13b70107c447b6f6f226c6145fbcc3b5446f9c834bca2f1597b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:06:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
developers.google.com/
142.250.74.14301 Moved Permanently 0 B IP 142.250.74.14:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: developers.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://makebeautynails.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://developers.google.com/
X-Cloud-Trace-Context: d54699e37e87d974db1668a8ed6fcb99
Date: Sat, 08 Oct 2022 20:06:02 GMT
Content-Type: text/html
Server: Google Frontend
Content-Length: 0
www.gstatic.com/feedback/js/help/prod/service/lazy.min.js
142.250.74.163200 OK 34 kB URL HTTP/2 www.gstatic.com/feedback/js/help/prod/service/lazy.min.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (2800)
Hash b688a52b7d6c2212143f2fd716e9b742
e22b82a28fbb83c06bf60059b48f5982741994e2
82296ef01f37465e9cd3c15588af83bad0fd96282c6cfa4e0120c23ba0253593
GET /feedback/js/help/prod/service/lazy.min.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://makebeautynails.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/product-feedback-gathering
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="product-feedback-gathering"
report-to: {"group":"product-feedback-gathering","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/product-feedback-gathering"}]}
content-length: 33911
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 08 Oct 2022 19:32:46 GMT
expires: Sat, 08 Oct 2022 20:22:46 GMT
cache-control: public, max-age=3000
last-modified: Thu, 06 Oct 2022 23:08:01 GMT
content-type: text/javascript
age: 1996
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f1a6b89e8fbde9b4f9870992a5c3857b
30bb453caa8a9d0fdc055bf95b6286ae182fe9f6
77449f73248b4aa265dca1e7277e528b4576ebb1389984e160768d65c9f14d4b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:06:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash de13f970f8aba26b5635ed31a9f7c667
2ce848652b67e0c2f9d8f5b299a80764cf83bf31
e3c3ee004ba0175fe4363bc1011e26f66fce0f848c83949a5d430e7d61ab781a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:06:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash a5bb2ca079b8c15c921933d39c57ae47
7ae6e38c3e12ef05164b04df7f2a65be3a3ec440
336607c0f56b4a97511339d2437520aa8c9d6cb07b5b5ddf535efe65561d2890
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:06:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D6856553766783220004%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D756328803689405388%26origin%3Dhttp://makebeautynails.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.z9QjrzsHcOc.O/d%253D1/rs%253DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D6856553766783220004%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D756328803689405388%26origin%3Dhttp://makebeautynails.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.z9QjrzsHcOc.O/d%253D1/rs%253DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/m%253D__features__%26bpli%3D1&go=true
216.58.207.237302 Found 479 B URL HTTP/2 accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D6856553766783220004%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D756328803689405388%26origin%3Dhttp://makebeautynails.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.z9QjrzsHcOc.O/d%253D1/rs%253DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D6856553766783220004%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D756328803689405388%26origin%3Dhttp://makebeautynails.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.z9QjrzsHcOc.O/d%253D1/rs%253DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/m%253D__features__%26bpli%3D1&go=true
IP 216.58.207.237:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (537)
Hash d986a692db6737e3237b976402c58b4b
3b8e4b177c54a465346e73a7170ed897ca6afc51
dec9a74500231e4b477df3a75e11b1148d22e7a2650caeddfebe6680d8d6b696
GET /ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D6856553766783220004%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D756328803689405388%26origin%3Dhttp://makebeautynails.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.z9QjrzsHcOc.O/d%253D1/rs%253DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D6856553766783220004%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D756328803689405388%26origin%3Dhttp://makebeautynails.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.z9QjrzsHcOc.O/d%253D1/rs%253DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/m%253D__features__%26bpli%3D1&go=true HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://makebeautynails.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 08 Oct 2022 20:06:03 GMT
location: https://www.blogger.com/followers.g?blogID=6856553766783220004&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50&pageSize=21&postID=756328803689405388&origin=http%3A%2F%2Fmakebeautynails.blogspot.com%2F&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.z9QjrzsHcOc.O%2Fd%3D1%2Frs%3DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA%2Fm%3D__features__&bpli=1
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: script-src 'nonce-vFSbSnAwGcvl4lZg38rKeg' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport, require-trusted-types-for 'script';report-uri /cspreport
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 479
server: GSE
set-cookie: __Host-GAPS=1:vrRLXdvPJLfZys6cKAFKxYPsAoOQ_Q:hs6vskOFGXDTLfea;Path=/;Expires=Mon, 07-Oct-2024 20:06:03 GMT;Secure;HttpOnly;Priority=HIGH
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash ed614138648c241dfe36593a86955126
d481d3eef07867f1625b6668608f1c95490d9df5
cdf207d58794e9f1b514b9d514ef4abae5cfb5d1d70de63420f0529e048ebadd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:06:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 07e328c57909afc5a9e79d7d6907e7cf
38f1cc086938281fb5fbbd1877edf17263ae1fda
76c5865adaa292511aeeea981863ca4acbb44f82980998b6aafe64c1f6feedcb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:06:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.com/adsid/integrator.js?domain=makebeautynails.blogspot.com
142.250.74.34200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=makebeautynails.blogspot.com
IP 142.250.74.34:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=makebeautynails.blogspot.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://makebeautynails.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sat, 08 Oct 2022 20:06:03 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www6.jqueryapi.info/?template=ARROW_3&tdfs=1&s_token=1665259459.0376460000&uuid=1665259459.0376460000&term=Javascript%20Image%20Annotation%20Library&term=Online%20Programming%20Courses&term=Coding%20Certification%20Programs&term=Ethical%20Cracking%20and%20Penetration%20Testing&searchbox=0&showDomain=0&backfill=0
35.186.238.101200 OK 2.6 kB URL HTTP/1.1 www6.jqueryapi.info/?template=ARROW_3&tdfs=1&s_token=1665259459.0376460000&uuid=1665259459.0376460000&term=Javascript%20Image%20Annotation%20Library&term=Online%20Programming%20Courses&term=Coding%20Certification%20Programs&term=Ethical%20Cracking%20and%20Penetration%20Testing&searchbox=0&showDomain=0&backfill=0
IP 35.186.238.101:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2551), with no line terminators
Hash 41f66bb0ac50f2d851236170e7c71341
59bcec216302151922219b51be8ad8ab6d0b8384
ec99cca58b612ce268e6ada818dfcec0acc22dd1bbe372487be9abbdd07ce073
GET /?template=ARROW_3&tdfs=1&s_token=1665259459.0376460000&uuid=1665259459.0376460000&term=Javascript%20Image%20Annotation%20Library&term=Online%20Programming%20Courses&term=Coding%20Certification%20Programs&term=Ethical%20Cracking%20and%20Penetration%20Testing&searchbox=0&showDomain=0&backfill=0 HTTP/1.1
Host: www6.jqueryapi.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://makebeautynails.blogspot.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: openresty
Date: Sat, 08 Oct 2022 20:06:03 GMT
Content-Type: text/html
Content-Length: 2551
Last-Modified: Fri, 16 Sep 2022 16:46:37 GMT
ETag: "6324a86d-9f7"
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAJRmzcpTevQqkWn6dJuX/N/Hxl7YxbOwy8+73ijqYSQEN+WGxrruAKtZtliWC86+ewQ0msW1W8psOFL/b00zWqsCAwEAAQ_PHbX0/JL6zPJAkSIChMWBDSqrK+v3w1W6N23fF1RrYWLHH5wwKuP10z6VE0IO3LK326a1umCiOQNcgWsyy5oLQ
Cache-Control: no-cache
X-Content-Type-Options: nosniff
Set-Cookie: caf_ipaddr=91.90.42.154;Path=/;Max-Age=86400;
country=NO;Path=/;Max-Age=86400;
city="";Path=/;Max-Age=86400;
expiry_partner=;Path=/;Max-Age=86400;
Accept-Ranges: bytes
Via: 1.1 google
adservice.google.no/adsid/integrator.js?domain=makebeautynails.blogspot.com
142.250.74.162200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=makebeautynails.blogspot.com
IP 142.250.74.162:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=makebeautynails.blogspot.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://makebeautynails.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sat, 08 Oct 2022 20:06:03 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
partner.googleadservices.com/gampad/cookie.js?domain=makebeautynails.blogspot.com&callback=_gfp_s_&client=ca-pub-8180388655508270
172.217.21.162200 OK 202 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=makebeautynails.blogspot.com&callback=_gfp_s_&client=ca-pub-8180388655508270
IP 172.217.21.162:0
File type ASCII text, with no line terminators
Hash 82d37b228470c599afceb7fbde710f22
59bb7c722c6232fb04b01ecaf2bd7e786235449a
44eea00aef11f5d4457729dce7d2405618d94c93100a74fa65d9308c6cacd5b0
GET /gampad/cookie.js?domain=makebeautynails.blogspot.com&callback=_gfp_s_&client=ca-pub-8180388655508270 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://makebeautynails.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sat, 08 Oct 2022 20:06:03 GMT
server: cafe
cache-control: private
content-length: 202
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ssl.gstatic.com/accounts/o/1832714284-postmessagerelay.js
142.250.74.99200 OK 4.3 kB URL HTTP/2 ssl.gstatic.com/accounts/o/1832714284-postmessagerelay.js
IP 142.250.74.99:0
File type ASCII text, with very long lines (2267)
Hash 3f7502705229ccec9d066c5cd75e6c31
ede1663155afaa5a5213d075e6295c6d839b05c3
2be5113d3022d1819a19f327235d287a2538a03741fc08ccd9d55cc1d78b6282
GET /accounts/o/1832714284-postmessagerelay.js HTTP/1.1
Host: ssl.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://accounts.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/federated-signon-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="federated-signon-mpm-access"
report-to: {"group":"federated-signon-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/federated-signon-mpm-access"}]}
content-length: 4294
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 13:22:17 GMT
expires: Thu, 05 Oct 2023 13:22:17 GMT
cache-control: public, max-age=31536000
last-modified: Sat, 01 Oct 2022 02:06:56 GMT
content-type: text/javascript
age: 283426
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 2e92c2f8118b9db8661adaac937d4f34
0811391576e9e90c07d907baa9df85cc9b5a62ca
3ce87e96b38a3b8daf0e567cfa6d95a1f9035249e6f797a67b65f1e03f1944ba
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:06:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash da5f54e2d234b159e435039798b4f58c
115cbe08795735df780e8d1a5fb31141187c074e
20fefe2ac7fcd44ae4d6714ff2148b54810a8e7b7f66103e4bbe9c0156b7b2fa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:06:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i155.photobucket.com/albums/s282/theviejo/recurso_3_4.jpg
54.230.111.3422 Unprocessable Entity 20 B URL HTTP/2 i155.photobucket.com/albums/s282/theviejo/recurso_3_4.jpg
IP 54.230.111.3:0
File type ASCII text, with no line terminators
Hash 4fd3699bb070f4638c0af9ac02437945
1db2bd628bd5796615458a471656ab8a38165d4e
b66b47698f7fba6218c4b7ad1137b526a5e1a5aa216f817b56c57d0b4dcfeefd
GET /albums/s282/theviejo/recurso_3_4.jpg HTTP/1.1
Host: i155.photobucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://makebeautynails.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 422 Unprocessable Entity
content-type: text/plain; charset=utf-8
content-length: 20
date: Sat, 08 Oct 2022 20:06:03 GMT
server: photobucket
x-amzn-trace-id: Root=1-6341d82b-7393512a3a23915c7bfac28c
x-request-id: xoVpfDyOiJghzjptQPVZQ
x-cache: Error from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Q1cOoSVTb4AZmekfR-T6P59s0Yv0MIMf8k79SU8JP_LVCyP6EtrfEA==
vary: Origin
X-Firefox-Spdy: h2
www.blogger.com/comment-iframe.g?blogID=6856553766783220004&postID=756328803689405388&blogspotRpcToken=9420927
216.58.207.201302 Moved Temporarily 322 B URL HTTP/1.1 www.blogger.com/comment-iframe.g?blogID=6856553766783220004&postID=756328803689405388&blogspotRpcToken=9420927
IP 216.58.207.201:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (412)
Hash 59ed627588ebb122c43ee9349352b801
a731cdf506e8ea21cf94307dcf9383dad0fb728b
8abe1c3a5d4006147080000b215565dc71d5a1e5ed621d1bfcc1288e95aabe27
GET /comment-iframe.g?blogID=6856553766783220004&postID=756328803689405388&blogspotRpcToken=9420927 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://makebeautynails.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Moved Temporarily
P3P: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
Location: https://accounts.google.com/ServiceLogin?passive=true&continue=http://www.blogger.com/comment-iframe.g?blogID%3D6856553766783220004%26postID%3D756328803689405388%26blogspotRpcToken%3D9420927%26bpli%3D1&followup=http://www.blogger.com/comment-iframe.g?blogID%3D6856553766783220004%26postID%3D756328803689405388%26blogspotRpcToken%3D9420927%26bpli%3D1&go=true
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Sat, 08 Oct 2022 20:06:03 GMT
Expires: Sat, 08 Oct 2022 20:06:03 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 322
Server: GSE
makebeautynails.blogspot.com/feeds/posts/summary?alt=json-in-script&callback=showpageCount&max-results=99999
142.250.74.161200 OK 56 kB URL HTTP/1.1 makebeautynails.blogspot.com/feeds/posts/summary?alt=json-in-script&callback=showpageCount&max-results=99999
IP 142.250.74.161:0
File type Unicode text, UTF-8 text, with very long lines (65473)
Hash b48259df6f0c8d37633d7a095fe646cd
c56dd97f870f1eeceeb78122648f075978982139
c7e8b09ed951d16e69efe23563ba75832bcef99b99e5b324f51c0e04d36b74c7
GET /feeds/posts/summary?alt=json-in-script&callback=showpageCount&max-results=99999 HTTP/1.1
Host: makebeautynails.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://makebeautynails.blogspot.com/2009/12/are-you-sick-of-recovery-posts-yet.html
HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
Server: blogger-renderd
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Content-Encoding: gzip
Content-Length: 55891
X-Frame-Options: SAMEORIGIN
Date: Sat, 08 Oct 2022 20:06:03 GMT
Expires: Sat, 08 Oct 2022 20:06:04 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
Last-Modified: Sat, 04 Dec 2021 21:03:36 GMT
ETag: W/"b5aae357a4f76322fae2802c89b9975d29b819d4aa6aca28a05a6b4f6d5ddd3a"
Content-Type: text/javascript; charset=UTF-8
Age: 0
makebeautynails.blogspot.com/feeds/posts/summary?alt=json-in-script&orderby=updated&start-index=1841&max-results=7&callback=showRelatedPost
142.250.74.161200 OK 7.3 kB URL HTTP/1.1 makebeautynails.blogspot.com/feeds/posts/summary?alt=json-in-script&orderby=updated&start-index=1841&max-results=7&callback=showRelatedPost
IP 142.250.74.161:0
File type Unicode text, UTF-8 text, with very long lines (29056)
Hash 35620aa7993b2efdc1c6a16ff1ac0956
d989ec15b49a82d77b30e9183c5c7a492c0ebd3c
219d46193f990ff16728ca5fb6a140f01a78645331ffaf22d8927bbb6a983094
GET /feeds/posts/summary?alt=json-in-script&orderby=updated&start-index=1841&max-results=7&callback=showRelatedPost HTTP/1.1
Host: makebeautynails.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://makebeautynails.blogspot.com/2009/12/are-you-sick-of-recovery-posts-yet.html
HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"dad579cf504dda0cdc86a1471391c2be63d4ff848a75a73bce17a3728809bea5"
Date: Sat, 08 Oct 2022 20:06:03 GMT
Content-Type: text/javascript; charset=UTF-8
Server: blogger-renderd
Expires: Sat, 08 Oct 2022 20:06:04 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Sat, 04 Dec 2021 21:03:36 GMT
Content-Encoding: gzip
Content-Length: 7285
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash cbece4f528536724dda32da0cce776e6
6d91ac32aa11a8b25ff9557f749712595888175b
4536023a98fff3e1183d86f7be99d3d255532f3c8ce5487997bd5a30ef6f4591
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:06:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/comment-iframe.g?blogID=6856553766783220004&postID=756328803689405388&blogspotRpcToken=9420927&bpli=1
216.58.207.201302 Moved Temporarily 258 B URL HTTP/1.1 www.blogger.com/comment-iframe.g?blogID=6856553766783220004&postID=756328803689405388&blogspotRpcToken=9420927&bpli=1
IP 216.58.207.201:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash e548149734dc1ea206c60847d8607aaa
e8e5dd329c6b5d20a263a16474636241d5368ef5
7ba6ce5efe84b15a53d9e4567f6efee99a4f4dc2adb18eacf6e8de828ab0994d
GET /comment-iframe.g?blogID=6856553766783220004&postID=756328803689405388&blogspotRpcToken=9420927&bpli=1 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://makebeautynails.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Moved Temporarily
P3P: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
Location: https://www.blogger.com/comment-iframe.g?blogID=6856553766783220004&postID=756328803689405388&blogspotRpcToken=9420927&bpli=1
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Sat, 08 Oct 2022 20:06:03 GMT
Expires: Sat, 08 Oct 2022 20:06:03 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 258
Server: GSE
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash cbece4f528536724dda32da0cce776e6
6d91ac32aa11a8b25ff9557f749712595888175b
4536023a98fff3e1183d86f7be99d3d255532f3c8ce5487997bd5a30ef6f4591
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:06:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/pagead/js/r20221003/r20110914/client/qs_click_protection_fy2021.js
142.250.74.33200 OK 7.5 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20221003/r20110914/client/qs_click_protection_fy2021.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1494)
Hash 3304a6f98a75044bb4421199c7dc75e9
abd6494aeb49a2bacc3754c8d92cc10b855a63b7
4328f9f5f12fc419ce804827b962689ea88b31cfe4db01cf301cbc57aef3ba09
GET /pagead/js/r20221003/r20110914/client/qs_click_protection_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 7528
x-xss-protection: 0
date: Sat, 08 Oct 2022 20:02:35 GMT
expires: Sat, 22 Oct 2022 20:02:35 GMT
cache-control: public, max-age=1209600
etag: 13775775994264215463
content-type: text/javascript; charset=UTF-8
age: 208
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
142.250.74.34200 OK 45 kB URL HTTP/2 www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
IP 142.250.74.34:0
File type ASCII text, with very long lines (3498)
Hash bd7876f9970dad86c8d29b630ec103c5
27e7a0d9bedb3e711708049fce7a8bb09b4721fc
37094988b85e9a49b6146ff7724d05aeb3cbb02efe4eeb68f095c8d2cdfc4453
GET /activeview/js/current/rx_lidar.js?cache=r20110914 HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/active-view-scs-read-write-acl
cross-origin-opener-policy: same-origin; report-to="active-view-scs-read-write-acl"
report-to: {"group":"active-view-scs-read-write-acl","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/active-view-scs-read-write-acl"}]}
content-length: 45072
date: Sat, 08 Oct 2022 20:06:03 GMT
expires: Sat, 08 Oct 2022 20:06:03 GMT
cache-control: private, max-age=3000
etag: "1664970042070988"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash cbece4f528536724dda32da0cce776e6
6d91ac32aa11a8b25ff9557f749712595888175b
4536023a98fff3e1183d86f7be99d3d255532f3c8ce5487997bd5a30ef6f4591
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:06:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/pagead/js/r20221003/r20110914/client/window_focus_fy2021.js
142.250.74.33200 OK 1.4 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20221003/r20110914/client/window_focus_fy2021.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1120)
Hash 80cd5cb3c635786273462df0f5f46e1a
419d5c86598430982672063ef04bb4966c94b9e8
f7f4c535ed4b9713150261c1c37ad1c2a883d08aef0ed2d6ce38736dd28d7301
GET /pagead/js/r20221003/r20110914/client/window_focus_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1359
x-xss-protection: 0
date: Sat, 08 Oct 2022 19:58:12 GMT
expires: Sat, 22 Oct 2022 19:58:12 GMT
cache-control: public, max-age=1209600
etag: 1484984001845508991
content-type: text/javascript; charset=UTF-8
age: 471
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 83fb939ed12cc3cfcb4a047293cbfa45
44eaea20db8add2a31ff3e9bac28956f9c64804b
18ee5be95ce3626873feccfed55228eb7ba8784dbf23100cb46079aaa065ded2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:06:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 2c808c2c05d75b4debd7e5f2aabedce0
078e256be9e1f0ca6eb276c4e379955c85ea5a6c
aaa1b9d62cf71364f55f568749f3e254888e6b03daacb0505c9f970396d72d4b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5152
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:06:03 GMT
Last-Modified: Sat, 08 Oct 2022 18:40:11 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 313
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2826
Expires: Sat, 08 Oct 2022 20:53:09 GMT
Date: Sat, 08 Oct 2022 20:06:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2826
Expires: Sat, 08 Oct 2022 20:53:09 GMT
Date: Sat, 08 Oct 2022 20:06:03 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e9e3511-179a-47a1-a41a-7b5f6ecbf14f.jpeg
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e9e3511-179a-47a1-a41a-7b5f6ecbf14f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a6207431ae268d805fb92237925c8fc0
075b576b0d47e0f6cbbb9dc85f87e8ca4e8eca87
bb8966bd5b80f1ba6c974925df0610e0a219759ab92df062e135baae02fa0071
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e9e3511-179a-47a1-a41a-7b5f6ecbf14f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5440
x-amzn-requestid: c9408e3c-29f6-4a53-b09d-0c3f49e99287
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zp3AzFQ3oAMF_Ow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63409ed1-1da6e8c500879b080c66fdfe;Sampled=0
x-amzn-remapped-date: Fri, 07 Oct 2022 21:49:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: bpAfspjZlm1y-CxYtXbhfwPHzcNxLJGVh_j685Z-TvTV-kdRttBjhg==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 07 Oct 2022 22:11:50 GMT
etag: "075b576b0d47e0f6cbbb9dc85f87e8ca4e8eca87"
content-type: image/jpeg
age: 78853
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56d7dd70-3706-4d51-94da-88fa19a58ad8.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56d7dd70-3706-4d51-94da-88fa19a58ad8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e5c4757ceb6dce32d0f9d26d5b3df038
d8209d82f61c7a09e00756e5dd32c99bc61af4a8
6aa007279ba4cdea3f772e0601e4082d40ee947ef8cc1201ce0009fb42ca9885
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56d7dd70-3706-4d51-94da-88fa19a58ad8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5185
x-amzn-requestid: 3c3ff89f-8a8c-44ae-981a-0e9adaf7d959
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zj_dSEs8IAMFqFA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633e45ee-6c97b82d137c2f1951270b82;Sampled=0
x-amzn-remapped-date: Thu, 06 Oct 2022 03:05:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 6wWlD3C6HI9oxa0VAYA6N5afAcUDTQXdO8X31eZUglfdC6jSQo_gew==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 08 Oct 2022 03:29:14 GMT
age: 59809
etag: "d8209d82f61c7a09e00756e5dd32c99bc61af4a8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0135ba0-9033-445f-8155-a6c093862ccb.jpeg
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0135ba0-9033-445f-8155-a6c093862ccb.jpeg
IP 34.120.237.76:0
Hash 8cda75f854ab3755bafcc564decc28b5
16baa67a7cc6928f0a082f7fc9e0e756311ceb27
6de2b82fba0dbb4bea21bacd31f2f6461ad62ac6a36b05c4fe30b6c485785058
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0135ba0-9033-445f-8155-a6c093862ccb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9046
x-amzn-requestid: d560c8ba-6e81-46f7-a451-30c40fbfce6f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zmhi_F7qIAMFkQg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633f4946-012e65d675558ec8544a1f30;Sampled=0
x-amzn-remapped-date: Thu, 06 Oct 2022 21:31:50 GMT
x-amz-cf-pop: SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: Y_VpleudG3M2sQd7mFGVhPvfULiNQl3YY8xuhiTnTE5VIC64O8vqMA==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 583992e175976bd59a21b4416890271e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 07 Oct 2022 21:44:19 GMT
age: 80504
etag: "c6ebf53c21206cfcf8e70279d3ae43f0170ade3a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
accounts.google.com/o/oauth2/postmessageRelay?parent=http%3A%2F%2Fmakebeautynails.blogspot.com&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.z9QjrzsHcOc.O%2Fd%3D1%2Frs%3DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA%2Fm%3D__features__
216.58.207.237200 OK 6.7 kB URL HTTP/2 accounts.google.com/o/oauth2/postmessageRelay?parent=http%3A%2F%2Fmakebeautynails.blogspot.com&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.z9QjrzsHcOc.O%2Fd%3D1%2Frs%3DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA%2Fm%3D__features__
IP 216.58.207.237:0
Hash ea18a926981a61c13803b858b4a46883
40176ba73b91cd1cca3819b23b355c67af5af973
0006bc43d0077819d2cde7e5d1bfd687faea2865953dd933ba1652b043c129ec
GET /o/oauth2/postmessageRelay?parent=http%3A%2F%2Fmakebeautynails.blogspot.com&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.z9QjrzsHcOc.O%2Fd%3D1%2Frs%3DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA%2Fm%3D__features__ HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://makebeautynails.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 08 Oct 2022 20:06:03 GMT
content-security-policy: require-trusted-types-for 'script';report-uri /o/cspreport, script-src 'nonce-gYYWUpInnSp_NZJYmLZNdA' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /o/cspreport
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcff4d93b-bc27-41dd-ad6a-5d295cfb6472.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcff4d93b-bc27-41dd-ad6a-5d295cfb6472.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7dcf23b32642f7a82a0a7d734a631bca
9dc8bd1a00dcb896fade6d3112ef53439ecb8fe7
add9aab4427819610f8d693758a752910cf314346e974b7636a82381ab9daa4d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcff4d93b-bc27-41dd-ad6a-5d295cfb6472.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4252
x-amzn-requestid: 8d6a225c-6389-4f20-9b90-494841f47c99
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zp1R4GjCIAMFX-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63409c0b-4076dc933185d9fd6b68e802;Sampled=0
x-amzn-remapped-date: Fri, 07 Oct 2022 21:37:15 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Wb1JAlWtR9sSEi_KuYZivvMivSxZjo92LGpWgFppol5zgapK6eQ-dg==
via: 1.1 c21a0d27ceec21e266c9f962d0349438.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 07 Oct 2022 21:37:16 GMT
etag: "9dc8bd1a00dcb896fade6d3112ef53439ecb8fe7"
content-type: image/jpeg
age: 80927
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc28ec4d4-ad94-4fbc-83a3-2675118e5987.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc28ec4d4-ad94-4fbc-83a3-2675118e5987.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e282fb952c8c81b3369d747b9fa837c8
038e45c00f7f0c55c4160b6d3fa25fd129ff9ef8
735fd68ef05cdcae00eaeac826b0fb291daad2b35bbad07a8a67745f1799b211
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc28ec4d4-ad94-4fbc-83a3-2675118e5987.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10137
x-amzn-requestid: 23b13773-c294-497d-971c-9fe56f88d5dd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zp1R4Fm9IAMFbbg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63409c0b-7fc0b69250f718693a8aeec0;Sampled=0
x-amzn-remapped-date: Fri, 07 Oct 2022 21:37:15 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: SCuEpmMUuQr6mI-jF6UIRbaVtMYC47MzeNnQLeB5O5XF2PsPrAmL1Q==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 07 Oct 2022 21:37:16 GMT
etag: "038e45c00f7f0c55c4160b6d3fa25fd129ff9ef8"
content-type: image/jpeg
age: 80927
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 6452a8604afea309aa15c20f2ec201cc
dc6a4d0ee8e8c2c5bf39adf70c5bafe0c0af11e9
3e1e9fbb5963455ca79f79bb7c9784ba8e4f0d29e163ec5771007be1145f9ea7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5906
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:06:03 GMT
Last-Modified: Sat, 08 Oct 2022 18:27:37 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 312
rtb.nl.eu.criteo.com/google/auction/notify?profile=14&payload=kMevFLOzWawC2ASdg2ICAgAAAG9UOf45Y6l8ECrYQWOeJZv007GKZq2eoQASAAA&wp=Y0HYKwADADQKssDaAAabQFZuoKA11ymaEKnN0w
178.250.2.129200 OK 0 B URL HTTP/2 rtb.nl.eu.criteo.com/google/auction/notify?profile=14&payload=kMevFLOzWawC2ASdg2ICAgAAAG9UOf45Y6l8ECrYQWOeJZv007GKZq2eoQASAAA&wp=Y0HYKwADADQKssDaAAabQFZuoKA11ymaEKnN0w
IP 178.250.2.129:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /google/auction/notify?profile=14&payload=kMevFLOzWawC2ASdg2ICAgAAAG9UOf45Y6l8ECrYQWOeJZv007GKZq2eoQASAAA&wp=Y0HYKwADADQKssDaAAabQFZuoKA11ymaEKnN0w HTTP/1.1
Host: rtb.nl.eu.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server-processing-duration-in-ticks: 263107
date: Sat, 08 Oct 2022 20:06:03 GMT
server: Kestrel
content-length: 0
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
rtb.nl.eu.criteo.com/google/auction/notify?profile=14&payload=kMevFLOzWdgFWp2DYgICAAAAOLAsRcavHOEQKthBYzjdJjHLsf67twEqABIAAA&wp=Y0HYKwACnjsK5gwRAA0_HoV4bXFxV0-JZV12bg
178.250.2.129200 OK 0 B URL HTTP/2 rtb.nl.eu.criteo.com/google/auction/notify?profile=14&payload=kMevFLOzWdgFWp2DYgICAAAAOLAsRcavHOEQKthBYzjdJjHLsf67twEqABIAAA&wp=Y0HYKwACnjsK5gwRAA0_HoV4bXFxV0-JZV12bg
IP 178.250.2.129:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /google/auction/notify?profile=14&payload=kMevFLOzWdgFWp2DYgICAAAAOLAsRcavHOEQKthBYzjdJjHLsf67twEqABIAAA&wp=Y0HYKwACnjsK5gwRAA0_HoV4bXFxV0-JZV12bg HTTP/1.1
Host: rtb.nl.eu.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server-processing-duration-in-ticks: 317132
date: Sat, 08 Oct 2022 20:06:02 GMT
server: Kestrel
content-length: 0
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
platform.twitter.com/widgets.js
192.229.233.25200 OK 29 kB URL HTTP/1.1 platform.twitter.com/widgets.js
IP 192.229.233.25:0
File type Unicode text, UTF-8 text, with very long lines (33915)
Hash 4022ee7b53654f65608ad9a3ba759687
cc243d089a8a77c0a7123434746ea36b054634dd
7af6243905b2256cb4f8fe0e77386c274592c322fb23b11784ecf86d250c7e09
GET /widgets.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://makebeautynails.blogspot.com/
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 3000
Age: 943
Cache-Control: public, max-age=1800
Content-Type: application/javascript; charset=utf-8
Date: Sat, 08 Oct 2022 20:06:03 GMT
Etag: "f26384f93da6974ed577808dfa1fede5+gzip"
Last-Modified: Wed, 28 Sep 2022 20:05:37 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F71A)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
x-amzn-internal-status: 304
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 29223
connect.facebook.net/en_US/all.js
31.13.72.12200 OK 1.7 kB URL HTTP/1.1 connect.facebook.net/en_US/all.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (1961)
Hash e1124fc083940784f385f5372293fcf0
8f843afb98e2a25e8ad0a82acaf0926f3d0d19d3
f4740b163b3cae931e1e96f11ab216aa3b9d10c2cdccfa656589d673152ea892
GET /en_US/all.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://makebeautynails.blogspot.com/
HTTP/1.1 200 OK
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Expose-Headers: X-FB-Content-MD5
x-fb-content-md5: b00557accf0d37792a763d29c138a9ce
ETag: "e4a63acd474dfe0430cfb9f019c7034f"
Content-Type: application/x-javascript; charset=utf-8
timing-allow-origin: *
Access-Control-Allow-Origin: *
cross-origin-resource-policy: cross-origin
Expires: Sat, 08 Oct 2022 20:18:18 GMT
Cache-Control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
X-Content-Type-Options: nosniff
x-fb-rlafr: 0
X-Frame-Options: DENY
Strict-Transport-Security: max-age=31536000; preload; includeSubDomains
Content-MD5: 4RJPwIOUB4TzhfU3IpP88A==
X-FB-Debug: taNWOd+om2nAeXWan66A5kY/dzzuCWWnYrDsLGrx5wfnsgR06tUnOJKs13lAGEiDUWqtHMHTcAlpnkwgNZF9lA==
X-FB-TRIP-ID: 1904183273
Date: Sat, 08 Oct 2022 20:06:03 GMT
Alt-Svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
Connection: keep-alive
Content-Length: 1685
rtb.nl.eu.criteo.com/google/auction/notify?profile=14&payload=kMevFLOzWdACmAKdg2ICAgAAAN0ly8Hv3YDOECrYQWMBqWuFWqkNlqNB0gASAAA&wp=Y0HYKwAC_9IKsoFSAAJoXmGdkUupctc_fReVNQ
178.250.2.129200 OK 0 B URL HTTP/2 rtb.nl.eu.criteo.com/google/auction/notify?profile=14&payload=kMevFLOzWdACmAKdg2ICAgAAAN0ly8Hv3YDOECrYQWMBqWuFWqkNlqNB0gASAAA&wp=Y0HYKwAC_9IKsoFSAAJoXmGdkUupctc_fReVNQ
IP 178.250.2.129:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /google/auction/notify?profile=14&payload=kMevFLOzWdACmAKdg2ICAgAAAN0ly8Hv3YDOECrYQWMBqWuFWqkNlqNB0gASAAA&wp=Y0HYKwAC_9IKsoFSAAJoXmGdkUupctc_fReVNQ HTTP/1.1
Host: rtb.nl.eu.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server-processing-duration-in-ticks: 288807
date: Sat, 08 Oct 2022 20:06:03 GMT
server: Kestrel
content-length: 0
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/webfont/1.6.28/webfontloader.js
104.17.25.14200 OK 4.4 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/webfont/1.6.28/webfontloader.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (2171)
Hash 44c72b9bddfecacc9114e84d685dd085
38f3ff57b9b64a38fc2153eb30564b7fc1c86349
c82afd4f2d89288b4b79244f0c24264810b11326670710ac8e28e7bfc87c7991
GET /ajax/libs/webfont/1.6.28/webfontloader.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 08 Oct 2022 20:06:03 GMT
content-type: application/javascript; charset=utf-8
content-length: 4420
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb04030-30d9"
last-modified: Mon, 04 May 2020 16:17:52 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 262178
expires: Thu, 28 Sep 2023 20:06:03 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=21344n%2F59wCd2HiJSyT68wXhF9b0W7vy5Xy0vXmE19Tog%2FDbY17Pz6h4IB4CM7Moc4x2IJRXwMT6Q9VbRQgf8eC5amNlBhjv5xtnh6LXKE1QPcTMQq5QMo2cE5JFIkxKHu5MkoTu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 75717eb22d760b06-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 579e733097a7260db68f6ab5fc4ab3c9
bcee618650f7eb1595974812db6995d7ee0e9764
c025aa32afae5edb4c793bcc3076c86ae945438c7d2e96f7847054aeb1ed690b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:06:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/js/bg/b4aq_x9zMiku-4ayY0gQrcEuJNMSghrM2Nuaea2nyAg.js
142.250.74.164200 OK 14 kB URL HTTP/2 www.google.com/js/bg/b4aq_x9zMiku-4ayY0gQrcEuJNMSghrM2Nuaea2nyAg.js
IP 142.250.74.164:0
File type ASCII text, with very long lines (35990)
Hash 1e54e51adb97823f581572d86859b8fa
39ff3c3bba49bd3c54bf20f5deb4bc80a8f909a1
bef8ae3cb7aeea8c7972dcc15b8482fa1ea534e4f0dc33058cdd7ec51a2ac4b1
GET /js/bg/b4aq_x9zMiku-4ayY0gQrcEuJNMSghrM2Nuaea2nyAg.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14237
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 08:50:41 GMT
expires: Thu, 05 Oct 2023 08:50:41 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 27 Sep 2022 17:00:00 GMT
content-type: text/javascript
age: 299722
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
platform.twitter.com/widgets/widget_iframe.7dae38096d06923d683a2a807172322a.html?origin=http%3A%2F%2Fmakebeautynails.blogspot.com
192.229.233.25200 OK 105 kB URL HTTP/1.1 platform.twitter.com/widgets/widget_iframe.7dae38096d06923d683a2a807172322a.html?origin=http%3A%2F%2Fmakebeautynails.blogspot.com
IP 192.229.233.25:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (56168)
Size 105 kB (105445 bytes)
Hash 800140747b9eaa618eb76779a72b8653
9b01fddea24a63b76d645398229523baae849fae
b4bc244dee0f2df26990afae0ccd9297f203e9757bc0a18445793ef4bb678dd2
GET /widgets/widget_iframe.7dae38096d06923d683a2a807172322a.html?origin=http%3A%2F%2Fmakebeautynails.blogspot.com HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://makebeautynails.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 770483
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Sat, 08 Oct 2022 20:06:03 GMT
Etag: "50d73c0b4a4c7e4697b9c6ac6f1ecd75+gzip"
Last-Modified: Wed, 28 Sep 2022 20:04:27 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F704)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 105445
makebeautynails.blogspot.com/favicon.ico
142.250.74.161200 OK 412 B URL HTTP/1.1 makebeautynails.blogspot.com/favicon.ico
IP 142.250.74.161:0
File type MS Windows icon resource - 2 icons, 32x32, 8 bits/pixel, 16x16, 8 bits/pixel\012- data
Hash 501c61a70f5c41181aa050d9110909ca
5b985d5671a7caf686fdfb1df13488c4407f6c9f
c4aaf001607ee331f6871b4dbbf45942b1e197726714fd106e46d70cc10ee97e
GET /favicon.ico HTTP/1.1
Host: makebeautynails.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://makebeautynails.blogspot.com/2009/12/are-you-sick-of-recovery-posts-yet.html
HTTP/1.1 200 OK
Content-Type: image/x-icon; charset=UTF-8
Expires: Sat, 08 Oct 2022 20:06:03 GMT
Date: Sat, 08 Oct 2022 20:06:03 GMT
Cache-Control: private, max-age=86400
Last-Modified: Sat, 04 Dec 2021 21:03:36 GMT
ETag: W/"391096c9562262b1d9ab2c8e0e9e447cb4df7f9232995904277a97c136ef46f1"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 412
Server: GSE
developers.google.com/
142.250.74.14200 OK 15 kB IP 142.250.74.14:0
Hash e14c7b81be1817f0a0835a7b255f4198
ca6d378b58756ee4197740a115165ca1af7e2f8a
263990584ce5664aef589d5c39dc46bb8561532a6d566566d9aa9183ee2990d7
GET / HTTP/1.1
Host: developers.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://makebeautynails.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Fri, 07 Oct 2022 20:26:22 GMT
content-type: text/html; charset=utf-8
set-cookie: _ga_devsite=GA1.3.876255386.1665259563; Expires=Mon, 07 Oct 2024 20:06:03 GMT; Max-Age=63072000; Path=/
content-security-policy: base-uri 'self'; object-src 'none'; script-src 'strict-dynamic' 'unsafe-inline' https: http: 'nonce-5H/t75EZgyWsrwReV166kaiObKXMiF' 'unsafe-eval'; report-uri https://csp.withgoogle.com/csp/devsite/v2
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: SAMEORIGIN
x-xss-protection: 0
x-content-type-options: nosniff
cache-control: no-cache, must-revalidate
expires: 0
pragma: no-cache
content-encoding: gzip
x-cloud-trace-context: 3598faec518b6eecea48cd340dce20d2
vary: Accept-Encoding
date: Sat, 08 Oct 2022 20:06:03 GMT
server: Google Frontend
content-length: 24363
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.criteo.net/design/dt/1e9d21625f7b457c9a67c4efda1ab364_avertastd-regular.woff
178.250.2.130200 OK 65 kB URL HTTP/2 static.criteo.net/design/dt/1e9d21625f7b457c9a67c4efda1ab364_avertastd-regular.woff
IP 178.250.2.130:0
File type Web Open Font Format, CFF, length 64988, version 1.8\012- data
Hash d4e6b55954059b95ca3de89aadc5123a
ded9187e84d2bf71f47b1fb67dd76afc784f6cdb
8f3ba47a656d93c17f22abc710882fd8d8826dc0cf996a2f4c4551a4154ed247
GET /design/dt/1e9d21625f7b457c9a67c4efda1ab364_avertastd-regular.woff HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 08 Oct 2022 20:06:04 GMT
content-type: text/plain; charset=UTF-8
content-length: 64988
last-modified: Fri, 28 Aug 2020 13:33:08 GMT
etag: "5f490794-fddc"
expires: Tue, 03 Oct 2023 20:06:04 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ads.eu.criteo.com/delivery/r/afr.php?z=Y0HYKwAC_9IKsoFSAAJoXmGdkUupctc_fReVNQ&u=%7C1fWbF3sAJnHFRVrkDub9klu2I50hthv5fzkWkzG18MA%3D%7C&c1=TEbw32HdmhlTb08vzaRE05Nor-kWNW37ds0oDHxEuxeKn7Xrp6ainli_Cmw5dJSudhYAqTqyTVIA5iD5hQwIhUEUr7HgEXV3R3mQpukSRgpo0oDX_ul_8uUhqY4v0orc6BBlU1s83rQPeANNQVn9yfqiIOof_r3wlDVixyr4gD-oF8ppHX9I_PI5xb82P2Blqe54iuf0TQxwO9Itd2SabO09HpORXwQqaqY0CKKUeqZ0UU2i7spFbDD39sf92Ia6UTg2EK30dwUOa48GQySLxhREOhT6Q_3cfWu1sPrJQV4UjO5d9fWeUCDTkn9NYfJrnFMSCz_Kld5NFwLvlU84ntgQZPRAzM_9DUz3M2zzv6mg8fqEUTO9gyNXnAQWNPBK0uMzYWDn4xHOrE-9PELeODMNqPW8ZHuWwO3zxFoXbQ-yoqtfoO0koUoD183mM4fZJ_rNfN57uE4arfrLPI9_FUTKGsvUvPVV10Y1OcZQNTuS1msqzyemW1yLZYeEO7rCYKd_Uv_U86Ilix-b1sdvo6ehqpepPWf7oriCUcmaOkU81iuxwl2p70LEaKo_12aj&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCoWpgK9hBY9L_C9KCygXe0InQBcme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItODE4MDM4ODY1NTUwODI3MMgBCakCJXH_5k9ZsD6oAwGqBKcCT9A-V3vbXlZeK2dxiA3SknuWoK-tkVfygPBIecMHLVStw2h7eizdT3JVHgeCfJbjxjwHA5cFwWLzPS5QZfS24QCMetjA-LZj7XSXZfqzwoWFyf4Np0OK4Rwkb_DxSdYqrVkmJlAE7ia9a6h0ILL9DicaQBUzDNOiqeAbb5jQBcifcNikCIZoRxgW9PBIGg4m7hrT5pWgpN-7mApHHDagAuSu7K-2YS1fWWJewnghUZmUT3rMeauGOQ_SS9UbywcxRgekiO1IO8U1H0SGq08RnoxCSe8dPs5m_SDFfuQR4jcEwTuOhhs1Z0Qxjp0EBxUlP-9ZFzShkmzBbUCfBOqCkGl3LRtQnp8bULhgYwHwJtb5YgwGcK11-TyDhd4gjEH6mUMd1XXAEoAGtLTNpc6fmteXAaAGIagHipixAqgHpr4bqAeW2BuoB6qbsQKoB_-esQKoB9-fsQLYBwDSCA8IgOGAcBABMgLrAjoCgED6CwIIAYAMAdAVAYAXAQ%26num%3D1%26sig%3DAOD64_29Rjjp6_-h2Z5u-kaQJZKvt5OWOg%26client%3Dca-pub-8180388655508270%26adurl%3D
178.250.0.138200 OK 51 kB URL HTTP/2 ads.eu.criteo.com/delivery/r/afr.php?z=Y0HYKwAC_9IKsoFSAAJoXmGdkUupctc_fReVNQ&u=%7C1fWbF3sAJnHFRVrkDub9klu2I50hthv5fzkWkzG18MA%3D%7C&c1=TEbw32HdmhlTb08vzaRE05Nor-kWNW37ds0oDHxEuxeKn7Xrp6ainli_Cmw5dJSudhYAqTqyTVIA5iD5hQwIhUEUr7HgEXV3R3mQpukSRgpo0oDX_ul_8uUhqY4v0orc6BBlU1s83rQPeANNQVn9yfqiIOof_r3wlDVixyr4gD-oF8ppHX9I_PI5xb82P2Blqe54iuf0TQxwO9Itd2SabO09HpORXwQqaqY0CKKUeqZ0UU2i7spFbDD39sf92Ia6UTg2EK30dwUOa48GQySLxhREOhT6Q_3cfWu1sPrJQV4UjO5d9fWeUCDTkn9NYfJrnFMSCz_Kld5NFwLvlU84ntgQZPRAzM_9DUz3M2zzv6mg8fqEUTO9gyNXnAQWNPBK0uMzYWDn4xHOrE-9PELeODMNqPW8ZHuWwO3zxFoXbQ-yoqtfoO0koUoD183mM4fZJ_rNfN57uE4arfrLPI9_FUTKGsvUvPVV10Y1OcZQNTuS1msqzyemW1yLZYeEO7rCYKd_Uv_U86Ilix-b1sdvo6ehqpepPWf7oriCUcmaOkU81iuxwl2p70LEaKo_12aj&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCoWpgK9hBY9L_C9KCygXe0InQBcme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItODE4MDM4ODY1NTUwODI3MMgBCakCJXH_5k9ZsD6oAwGqBKcCT9A-V3vbXlZeK2dxiA3SknuWoK-tkVfygPBIecMHLVStw2h7eizdT3JVHgeCfJbjxjwHA5cFwWLzPS5QZfS24QCMetjA-LZj7XSXZfqzwoWFyf4Np0OK4Rwkb_DxSdYqrVkmJlAE7ia9a6h0ILL9DicaQBUzDNOiqeAbb5jQBcifcNikCIZoRxgW9PBIGg4m7hrT5pWgpN-7mApHHDagAuSu7K-2YS1fWWJewnghUZmUT3rMeauGOQ_SS9UbywcxRgekiO1IO8U1H0SGq08RnoxCSe8dPs5m_SDFfuQR4jcEwTuOhhs1Z0Qxjp0EBxUlP-9ZFzShkmzBbUCfBOqCkGl3LRtQnp8bULhgYwHwJtb5YgwGcK11-TyDhd4gjEH6mUMd1XXAEoAGtLTNpc6fmteXAaAGIagHipixAqgHpr4bqAeW2BuoB6qbsQKoB_-esQKoB9-fsQLYBwDSCA8IgOGAcBABMgLrAjoCgED6CwIIAYAMAdAVAYAXAQ%26num%3D1%26sig%3DAOD64_29Rjjp6_-h2Z5u-kaQJZKvt5OWOg%26client%3Dca-pub-8180388655508270%26adurl%3D
IP 178.250.0.138:0
Hash 204166dda85af999b91485f8ecaef2cd
1fd987abe1f29d6d37e111db26278f68737a8aae
e69040b369c086d0d67a332b3844073d0a0b6e40e900a464d409a1b2e3dce707
GET /delivery/r/afr.php?z=Y0HYKwAC_9IKsoFSAAJoXmGdkUupctc_fReVNQ&u=%7C1fWbF3sAJnHFRVrkDub9klu2I50hthv5fzkWkzG18MA%3D%7C&c1=TEbw32HdmhlTb08vzaRE05Nor-kWNW37ds0oDHxEuxeKn7Xrp6ainli_Cmw5dJSudhYAqTqyTVIA5iD5hQwIhUEUr7HgEXV3R3mQpukSRgpo0oDX_ul_8uUhqY4v0orc6BBlU1s83rQPeANNQVn9yfqiIOof_r3wlDVixyr4gD-oF8ppHX9I_PI5xb82P2Blqe54iuf0TQxwO9Itd2SabO09HpORXwQqaqY0CKKUeqZ0UU2i7spFbDD39sf92Ia6UTg2EK30dwUOa48GQySLxhREOhT6Q_3cfWu1sPrJQV4UjO5d9fWeUCDTkn9NYfJrnFMSCz_Kld5NFwLvlU84ntgQZPRAzM_9DUz3M2zzv6mg8fqEUTO9gyNXnAQWNPBK0uMzYWDn4xHOrE-9PELeODMNqPW8ZHuWwO3zxFoXbQ-yoqtfoO0koUoD183mM4fZJ_rNfN57uE4arfrLPI9_FUTKGsvUvPVV10Y1OcZQNTuS1msqzyemW1yLZYeEO7rCYKd_Uv_U86Ilix-b1sdvo6ehqpepPWf7oriCUcmaOkU81iuxwl2p70LEaKo_12aj&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCoWpgK9hBY9L_C9KCygXe0InQBcme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItODE4MDM4ODY1NTUwODI3MMgBCakCJXH_5k9ZsD6oAwGqBKcCT9A-V3vbXlZeK2dxiA3SknuWoK-tkVfygPBIecMHLVStw2h7eizdT3JVHgeCfJbjxjwHA5cFwWLzPS5QZfS24QCMetjA-LZj7XSXZfqzwoWFyf4Np0OK4Rwkb_DxSdYqrVkmJlAE7ia9a6h0ILL9DicaQBUzDNOiqeAbb5jQBcifcNikCIZoRxgW9PBIGg4m7hrT5pWgpN-7mApHHDagAuSu7K-2YS1fWWJewnghUZmUT3rMeauGOQ_SS9UbywcxRgekiO1IO8U1H0SGq08RnoxCSe8dPs5m_SDFfuQR4jcEwTuOhhs1Z0Qxjp0EBxUlP-9ZFzShkmzBbUCfBOqCkGl3LRtQnp8bULhgYwHwJtb5YgwGcK11-TyDhd4gjEH6mUMd1XXAEoAGtLTNpc6fmteXAaAGIagHipixAqgHpr4bqAeW2BuoB6qbsQKoB_-esQKoB9-fsQLYBwDSCA8IgOGAcBABMgLrAjoCgED6CwIIAYAMAdAVAYAXAQ%26num%3D1%26sig%3DAOD64_29Rjjp6_-h2Z5u-kaQJZKvt5OWOg%26client%3Dca-pub-8180388655508270%26adurl%3D HTTP/1.1
Host: ads.eu.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 08 Oct 2022 20:06:03 GMT
content-type: text/html
server: Kestrel
cache-control: private, max-age=0, no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-max-age: 1000
cross-origin-resource-policy: cross-origin
p3p: CP='CUR ADM OUR NOR STA NID'
report-to: {"endpoints":[{"url":"https://csm.eu.criteo.net/heavyad?cppv=3&cpp=dEy3TMDjeT0DiaMOUP6DkLpIMKcUfznb8fhUTdMKpa1p_u11CWCsPrYh0B0m-Z8N6gi2grXinwNDSTOq5HXwt7JBC9Vd17rT6r629d7xeYXK5S-SenjB181ui7XYGzq_43cDsoXIxhaq-uvKkTx8UfdeegjPEqkqBcG4cDmw3lzc_yimdZnWartKHWlWdCXZ8dJtyADMBnuwQUpwFXigp9306TsnA-n1No0ORU_B0T-OgZ5DdEOOICobVQ-A93NumIOwew"}], "max_age": 86400}
link: <pix.eu.criteo.net>; rel=preconnect; crossorigin, <static.criteo.net>; rel=preconnect; crossorigin
server-processing-duration-in-ticks: 123167364
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3ba6d799884a2b1d655b0378f0393eb7
f7c53a1e7d85fb1853bd76132c6dc41603b5763f
d8232f7c46658bce8a78ac0447bcb2e6d7f33cacdb364b7d3f0fac1867ca4788
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3064
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:06:04 GMT
Last-Modified: Sat, 08 Oct 2022 19:15:00 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash ba6ff667fffa473ee13384443ec0cc90
b51b569f3741aa28064874373db7dde5161166b4
b573f0c64d5deeed0b86420946fc573f65383cd8e53035630461dee40196d9e0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6482
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:06:04 GMT
Last-Modified: Sat, 08 Oct 2022 18:18:02 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 312
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash d96510ae08a9377c25f74287a1d01600
e8a79767b1976d497998f48cdc1f9b1aeb0cfd09
6a827ef105d8a8165c7fe2f6454fd0ce19c532cc7abb7eedf0e334d70d8416e5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3315
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:06:04 GMT
Last-Modified: Sat, 08 Oct 2022 19:10:49 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 313
connect.facebook.net/en_US/all.js?hash=51bddea67a62ac6da6075cff9549c90b
31.13.72.12200 OK 88 kB URL HTTP/2 connect.facebook.net/en_US/all.js?hash=51bddea67a62ac6da6075cff9549c90b
IP 31.13.72.12:0
File type ASCII text, with very long lines (18605)
Hash b2c2659a75a5d04825fa532d40c8f728
6fd49d65bfec8c7d65cab28d0746466f6ea751d2
11a17c2018d48248b73852b67556683b94b66d4c9d5b65e07dda0da067340659
GET /en_US/all.js?hash=51bddea67a62ac6da6075cff9549c90b HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://makebeautynails.blogspot.com
Connection: keep-alive
Referer: http://makebeautynails.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: bdf6a087acdc2f346fe42b53eda38eba
etag: "6b7fac626ac2dd8b02a8abebc69f23ce"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Sun, 08 Oct 2023 19:15:46 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: ssJlmnWl0Egl+lMtQMj3KA==
x-fb-debug: RzmOyQHpuFipD8AMCDDB0Vsb8tTPgoQbCDSagXnuX34v3Vy+iasZ6svGf1nqWkdqm4Dn2tUPyTAdgRwSezilBQ==
content-length: 88279
x-fb-trip-id: 1904183273
date: Sat, 08 Oct 2022 20:06:04 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/back_button2.svg
178.250.2.130200 OK 293 B URL HTTP/2 static.criteo.net/flash/icon/back_button2.svg
IP 178.250.2.130:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with CRLF line terminators
Hash d9f776bdc698e1bc9c6a1977218019cd
5763cfb5ac79adf0fa7f03a82bad04eea2dca243
725e869434fef8013208ed4c233d29744f9b363f867dcfb8f23e862880fa699a
GET /flash/icon/back_button2.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 08 Oct 2022 20:06:04 GMT
content-type: image/svg+xml
content-length: 293
last-modified: Thu, 28 Apr 2022 09:09:48 GMT
etag: "626a59dc-125"
expires: Tue, 03 Oct 2023 20:06:04 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash d96510ae08a9377c25f74287a1d01600
e8a79767b1976d497998f48cdc1f9b1aeb0cfd09
6a827ef105d8a8165c7fe2f6454fd0ce19c532cc7abb7eedf0e334d70d8416e5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3315
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:06:04 GMT
Last-Modified: Sat, 08 Oct 2022 19:10:49 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash d96510ae08a9377c25f74287a1d01600
e8a79767b1976d497998f48cdc1f9b1aeb0cfd09
6a827ef105d8a8165c7fe2f6454fd0ce19c532cc7abb7eedf0e334d70d8416e5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3315
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:06:04 GMT
Last-Modified: Sat, 08 Oct 2022 19:10:49 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash d96510ae08a9377c25f74287a1d01600
e8a79767b1976d497998f48cdc1f9b1aeb0cfd09
6a827ef105d8a8165c7fe2f6454fd0ce19c532cc7abb7eedf0e334d70d8416e5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3315
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:06:04 GMT
Last-Modified: Sat, 08 Oct 2022 19:10:49 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 313
rtb.fr.eu.criteo.com/google/auction/notify?profile=14&payload=kPjTDrOzWaAB2ASdg2ICAgAAAFwNH1_S61WHECrYQWN8QTgYQXjAGaIw0wASAAA&wp=Y0HYKwACnSkKsopWAAKa0U-VjAFl5sLbOOxbEg
178.250.0.129200 OK 0 B URL HTTP/2 rtb.fr.eu.criteo.com/google/auction/notify?profile=14&payload=kPjTDrOzWaAB2ASdg2ICAgAAAFwNH1_S61WHECrYQWN8QTgYQXjAGaIw0wASAAA&wp=Y0HYKwACnSkKsopWAAKa0U-VjAFl5sLbOOxbEg
IP 178.250.0.129:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /google/auction/notify?profile=14&payload=kPjTDrOzWaAB2ASdg2ICAgAAAFwNH1_S61WHECrYQWN8QTgYQXjAGaIw0wASAAA&wp=Y0HYKwACnSkKsopWAAKa0U-VjAFl5sLbOOxbEg HTTP/1.1
Host: rtb.fr.eu.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server-processing-duration-in-ticks: 191692
date: Sat, 08 Oct 2022 20:06:04 GMT
server: Kestrel
content-length: 0
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash ba6ff667fffa473ee13384443ec0cc90
b51b569f3741aa28064874373db7dde5161166b4
b573f0c64d5deeed0b86420946fc573f65383cd8e53035630461dee40196d9e0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6482
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:06:04 GMT
Last-Modified: Sat, 08 Oct 2022 18:18:02 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 312
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3ba6d799884a2b1d655b0378f0393eb7
f7c53a1e7d85fb1853bd76132c6dc41603b5763f
d8232f7c46658bce8a78ac0447bcb2e6d7f33cacdb364b7d3f0fac1867ca4788
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4366
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:06:04 GMT
Last-Modified: Sat, 08 Oct 2022 18:53:18 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
pix.eu.criteo.net/img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Flyle---scott_jackor_gron_barnklader_54664-0v-2.jpg&v=3&w=800&s=AYnH2XH-2qGB4ETjQktdvGuc&b=800
178.250.2.135200 OK 19 kB URL HTTP/2 pix.eu.criteo.net/img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Flyle---scott_jackor_gron_barnklader_54664-0v-2.jpg&v=3&w=800&s=AYnH2XH-2qGB4ETjQktdvGuc&b=800
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x650, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 207ed54b60dcf0fe056be49f0d709545
f909f594b6efe38454aaf646b6d0228ad6d38c15
fce9fa8398e9f48afa00ef81200a318320d9fa721df892c831cc5cd44d4431e3
GET /img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Flyle---scott_jackor_gron_barnklader_54664-0v-2.jpg&v=3&w=800&s=AYnH2XH-2qGB4ETjQktdvGuc&b=800 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=2321060
expires: Fri, 04 Nov 2022 16:50:24 GMT
date: Sat, 08 Oct 2022 20:06:03 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 19282
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Fjuicy-couture_tights-leggings_svart_barnklader_58243-5pp_.jpg&v=3&w=800&s=fCWMXx4C2OlN2jy_VLvYVVNM&b=800
178.250.2.135200 OK 11 kB URL HTTP/2 pix.eu.criteo.net/img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Fjuicy-couture_tights-leggings_svart_barnklader_58243-5pp_.jpg&v=3&w=800&s=fCWMXx4C2OlN2jy_VLvYVVNM&b=800
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x650, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 9de2faac4c1eba94b15e5326c9ee7c9b
a79ba688faeffb6d2f565b3a4e1016ba52c03d2c
62ea1ac24e6ca76e8a7bbe6f0d7550884a3fcef07bef21f05ce2785517d2cdaa
GET /img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Fjuicy-couture_tights-leggings_svart_barnklader_58243-5pp_.jpg&v=3&w=800&s=fCWMXx4C2OlN2jy_VLvYVVNM&b=800 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=2549856
expires: Mon, 07 Nov 2022 08:23:40 GMT
date: Sat, 08 Oct 2022 20:06:04 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 10746
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Fjuicy-couture_huvtrojor-hoodies_gron_barnklader_58253-ih1q.jpg&v=3&w=800&s=jBV97WwZHIdmgNsoP2-EK5pL&b=800
178.250.2.135200 OK 12 kB URL HTTP/2 pix.eu.criteo.net/img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Fjuicy-couture_huvtrojor-hoodies_gron_barnklader_58253-ih1q.jpg&v=3&w=800&s=jBV97WwZHIdmgNsoP2-EK5pL&b=800
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x650, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash db678b0077f14e7a88d9e201ba92af68
3b39ee0d1c463f71c1603de5c1b5fe5b53d01496
2182a94be4c92980360f236b2e10cd841b41c039ad5846893ac02aa1d7cbdc58
GET /img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Fjuicy-couture_huvtrojor-hoodies_gron_barnklader_58253-ih1q.jpg&v=3&w=800&s=jBV97WwZHIdmgNsoP2-EK5pL&b=800 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=122863
expires: Mon, 10 Oct 2022 06:13:48 GMT
date: Sat, 08 Oct 2022 20:06:03 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 12192
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Fhummel_huvtrojor-hoodies_gron_barnklader_60824-en7k.jpg&v=3&w=800&s=sXcDKkV6Atc9KTZ7Q_bQlV0c&b=800
178.250.2.135200 OK 12 kB URL HTTP/2 pix.eu.criteo.net/img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Fhummel_huvtrojor-hoodies_gron_barnklader_60824-en7k.jpg&v=3&w=800&s=sXcDKkV6Atc9KTZ7Q_bQlV0c&b=800
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x650, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 89f1fc31d83f026cca8b7430047eccc3
5ee198a7cda4833c7859996b9e18f16b02b52911
8572a02fcafcbe9d303cdb2195e22f26cbe32dfbd6a7dbd3f8051173353adeaf
GET /img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Fhummel_huvtrojor-hoodies_gron_barnklader_60824-en7k.jpg&v=3&w=800&s=sXcDKkV6Atc9KTZ7Q_bQlV0c&b=800 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=2212195
expires: Thu, 03 Nov 2022 10:36:00 GMT
date: Sat, 08 Oct 2022 20:06:03 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 12110
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Flyle---scott_jackor-vastar_svart_barnklader_27402-6ud2.jpg&v=3&w=800&s=s6uV1bgqHJDgu-c-v1IlaK3c&b=800
178.250.2.135200 OK 15 kB URL HTTP/2 pix.eu.criteo.net/img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Flyle---scott_jackor-vastar_svart_barnklader_27402-6ud2.jpg&v=3&w=800&s=s6uV1bgqHJDgu-c-v1IlaK3c&b=800
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x650, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b788721d033ad8c72c45bc19f505d810
09340b89c287b07ac25d70f8ca6a65c0b8307fcc
727ff87dc556fc1c96f5251d8692395f07ec346a855609c84511e6e0ccf40095
GET /img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Flyle---scott_jackor-vastar_svart_barnklader_27402-6ud2.jpg&v=3&w=800&s=s6uV1bgqHJDgu-c-v1IlaK3c&b=800 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=2319654
expires: Fri, 04 Nov 2022 16:26:59 GMT
date: Sat, 08 Oct 2022 20:06:03 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 14712
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Ftommy-hilfiger_trojor-sweatshirts_vit_barnklader_56094-937m.jpg&v=3&w=800&s=iRKlLOqricOrsv1Tuq1h6qqJ&b=800
178.250.2.135200 OK 28 kB URL HTTP/2 pix.eu.criteo.net/img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Ftommy-hilfiger_trojor-sweatshirts_vit_barnklader_56094-937m.jpg&v=3&w=800&s=iRKlLOqricOrsv1Tuq1h6qqJ&b=800
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x650, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 67f4c7d40167a892b124c2ef014703c5
1d5cb616aac04a74d45a89ce5c2919bbc22bd532
b5e6677497b39d3e89eb2b3bb8004e2c1bd41481a7dfebc4c0165128217b85a8
GET /img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Ftommy-hilfiger_trojor-sweatshirts_vit_barnklader_56094-937m.jpg&v=3&w=800&s=iRKlLOqricOrsv1Tuq1h6qqJ&b=800 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=1768013
expires: Sat, 29 Oct 2022 07:12:58 GMT
date: Sat, 08 Oct 2022 20:06:03 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 27496
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Falpha-industries_trojor-cardigans_vit_barnklader_42346-2npa.jpg&v=3&w=800&s=P7jpd1Sd9Sq1SeypQ-sco30f&b=800
178.250.2.135200 OK 8.7 kB URL HTTP/2 pix.eu.criteo.net/img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Falpha-industries_trojor-cardigans_vit_barnklader_42346-2npa.jpg&v=3&w=800&s=P7jpd1Sd9Sq1SeypQ-sco30f&b=800
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x650, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash dc2f34a91b50deb208d75f9b5a8c663a
7cfb3b6838d5ed92b9316ccadf075ac78ecb41cd
e22351e59b6058d6c972ccb4b3ca725210ed2a27a9a3fd736e85a876de52dff8
GET /img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Falpha-industries_trojor-cardigans_vit_barnklader_42346-2npa.jpg&v=3&w=800&s=P7jpd1Sd9Sq1SeypQ-sco30f&b=800 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=169940
expires: Mon, 10 Oct 2022 19:18:25 GMT
date: Sat, 08 Oct 2022 20:06:03 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 8662
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Ftommy-hilfiger_t-shirt-linnen_svart_barnklader_55668-44s1.jpg&v=3&w=800&s=Lr43hOxSPyy_6hgMUbQw4VTK&b=800
178.250.2.135200 OK 12 kB URL HTTP/2 pix.eu.criteo.net/img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Ftommy-hilfiger_t-shirt-linnen_svart_barnklader_55668-44s1.jpg&v=3&w=800&s=Lr43hOxSPyy_6hgMUbQw4VTK&b=800
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x650, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 9238dc520d1da949f931199feeecdbd8
9068e5e96a6ebfcbe9863ccbe5ed6a8fec74bea5
688a4b5dcf6478eb6403b0b18a26ebc5e253260cae8b638bc0607b6618088b48
GET /img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Ftommy-hilfiger_t-shirt-linnen_svart_barnklader_55668-44s1.jpg&v=3&w=800&s=Lr43hOxSPyy_6hgMUbQw4VTK&b=800 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=256954
expires: Tue, 11 Oct 2022 19:28:38 GMT
date: Sat, 08 Oct 2022 20:06:04 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 12086
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
cat.fr.eu.criteo.com/delivery/lg.php?cppv=3&cpp=FW8bwdgJZ7RCrsWxq7a_Wh-Z29uHSMO1xOz3mTNqbNSFGfYOWQIWMeVOY4X9c2YhHtH0CFLa8aqwIuITQEeWiwF41UC_EbCS0scwC0oxvVDxV_WxIz3eXQywEVbb5u7mS5E3QzJ0G84u_molJbAY7hoYQl5CK2clnr29oRtx5IgV5k_hg9aFkHO8qJyvAVKxvcyhfHlH8GmNTkqljRJXyVcADXqe8FCqEQrxP3wVuR9-5WUUEzTdeZVZLH4UMv8Ocp3SlJWMBfeSRBNkOs36rtYUKF4B2OlhvSrBFxm2mbeZH0BhykCQmNizRDCnc7PfgbSqx00o7zIPzsFDpYc1veKB94CSr_V4mnjbNvkedh3QnWcPgzzUzjgGCGVCI_wqlP3mBxz4kKhgGHrfOlTGzdt5az9Kt4OPFjfi-MqDaqGS3BMM
178.250.0.160200 OK 43 kB URL HTTP/2 cat.fr.eu.criteo.com/delivery/lg.php?cppv=3&cpp=FW8bwdgJZ7RCrsWxq7a_Wh-Z29uHSMO1xOz3mTNqbNSFGfYOWQIWMeVOY4X9c2YhHtH0CFLa8aqwIuITQEeWiwF41UC_EbCS0scwC0oxvVDxV_WxIz3eXQywEVbb5u7mS5E3QzJ0G84u_molJbAY7hoYQl5CK2clnr29oRtx5IgV5k_hg9aFkHO8qJyvAVKxvcyhfHlH8GmNTkqljRJXyVcADXqe8FCqEQrxP3wVuR9-5WUUEzTdeZVZLH4UMv8Ocp3SlJWMBfeSRBNkOs36rtYUKF4B2OlhvSrBFxm2mbeZH0BhykCQmNizRDCnc7PfgbSqx00o7zIPzsFDpYc1veKB94CSr_V4mnjbNvkedh3QnWcPgzzUzjgGCGVCI_wqlP3mBxz4kKhgGHrfOlTGzdt5az9Kt4OPFjfi-MqDaqGS3BMM
IP 178.250.0.160:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 47f1101a70588f90e8a1de006b77cf4d
861e7f3fb804a9badd0fb7f4452f113cdb24a023
29c75f7fe1ee02881fd214faa2aa61814aec6e32deb1964be80d2f711b6356bf
GET /delivery/lg.php?cppv=3&cpp=FW8bwdgJZ7RCrsWxq7a_Wh-Z29uHSMO1xOz3mTNqbNSFGfYOWQIWMeVOY4X9c2YhHtH0CFLa8aqwIuITQEeWiwF41UC_EbCS0scwC0oxvVDxV_WxIz3eXQywEVbb5u7mS5E3QzJ0G84u_molJbAY7hoYQl5CK2clnr29oRtx5IgV5k_hg9aFkHO8qJyvAVKxvcyhfHlH8GmNTkqljRJXyVcADXqe8FCqEQrxP3wVuR9-5WUUEzTdeZVZLH4UMv8Ocp3SlJWMBfeSRBNkOs36rtYUKF4B2OlhvSrBFxm2mbeZH0BhykCQmNizRDCnc7PfgbSqx00o7zIPzsFDpYc1veKB94CSr_V4mnjbNvkedh3QnWcPgzzUzjgGCGVCI_wqlP3mBxz4kKhgGHrfOlTGzdt5az9Kt4OPFjfi-MqDaqGS3BMM HTTP/1.1
Host: cat.fr.eu.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 08 Oct 2022 20:06:04 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
server-processing-duration-in-ticks: 2194622
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Fjuicy-couture_huvtrojor-hoodies_rosa_barnklader_58228-lm5v.jpg&v=3&w=800&s=nnT8lbejXCLmdKRQ5HjYc88q&b=800
178.250.2.135200 OK 20 kB URL HTTP/2 pix.eu.criteo.net/img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Fjuicy-couture_huvtrojor-hoodies_rosa_barnklader_58228-lm5v.jpg&v=3&w=800&s=nnT8lbejXCLmdKRQ5HjYc88q&b=800
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x650, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 904f92be35b6d76b023249587da39601
1098b4603545d585e1f2b4d50b554d1827e52ec0
aaee0b27f91dae4bed7b2312e85718b990f5698875c55445c72f1a1d267f6699
GET /img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Fjuicy-couture_huvtrojor-hoodies_rosa_barnklader_58228-lm5v.jpg&v=3&w=800&s=nnT8lbejXCLmdKRQ5HjYc88q&b=800 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=2100614
expires: Wed, 02 Nov 2022 03:36:19 GMT
date: Sat, 08 Oct 2022 20:06:04 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 19798
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Flyle---scott_huvtrojor-hoodies_gron_barnklader_57956-sgy-.jpg&v=3&w=800&s=DC4tiiMfiTrEiGVIQEAQXtzm&b=800
178.250.2.135200 OK 12 kB URL HTTP/2 pix.eu.criteo.net/img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Flyle---scott_huvtrojor-hoodies_gron_barnklader_57956-sgy-.jpg&v=3&w=800&s=DC4tiiMfiTrEiGVIQEAQXtzm&b=800
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x650, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b314dcb7074086db9407488059dda2e7
7d9e5e46bbefd4b8a0478856eee41e9d6b222acd
fcbb4cd83cae79009a73d23299ff42e5dce21e471962d96f937a8114ba7f072a
GET /img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Flyle---scott_huvtrojor-hoodies_gron_barnklader_57956-sgy-.jpg&v=3&w=800&s=DC4tiiMfiTrEiGVIQEAQXtzm&b=800 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=2519572
expires: Sun, 06 Nov 2022 23:58:56 GMT
date: Sat, 08 Oct 2022 20:06:04 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 12002
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Fsvea_jackor-vastar_bla_barnklader_39866-z1dk.jpg&v=3&w=800&s=AGpwV5r1UoPyWIffaG7Q_5JM&b=800
178.250.2.135200 OK 17 kB URL HTTP/2 pix.eu.criteo.net/img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Fsvea_jackor-vastar_bla_barnklader_39866-z1dk.jpg&v=3&w=800&s=AGpwV5r1UoPyWIffaG7Q_5JM&b=800
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x650, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 4217f54348d541fae7473119038d96bc
1e4d28ea6b942e984ebe43de20c00eb6d20f422c
e4769909889d67edb524dd862930db89378509eb07dc19a5352a16e52043b973
GET /img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Fsvea_jackor-vastar_bla_barnklader_39866-z1dk.jpg&v=3&w=800&s=AGpwV5r1UoPyWIffaG7Q_5JM&b=800 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=2414750
expires: Sat, 05 Nov 2022 18:51:54 GMT
date: Sat, 08 Oct 2022 20:06:03 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 17230
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Flyle---scott_shorts_gra_barnklader_20675-lcmc.jpg&v=3&w=800&s=1SBjeentI8vnrvye8L-jl7Z5&b=800
178.250.2.135200 OK 13 kB URL HTTP/2 pix.eu.criteo.net/img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Flyle---scott_shorts_gra_barnklader_20675-lcmc.jpg&v=3&w=800&s=1SBjeentI8vnrvye8L-jl7Z5&b=800
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x650, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 7e129366433445554a0e51ab755d25cf
f4b01ebb62816c71c2ed0d4e1c8294b1cb200840
e4480f8246b8991de4a0b0da3f8344026b33d82bd6ff7b81cfdedec7d97e2dab
GET /img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Flyle---scott_shorts_gra_barnklader_20675-lcmc.jpg&v=3&w=800&s=1SBjeentI8vnrvye8L-jl7Z5&b=800 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=2313300
expires: Fri, 04 Nov 2022 14:41:04 GMT
date: Sat, 08 Oct 2022 20:06:04 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 13376
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/criteo_logo_2021.svg
178.250.2.130200 OK 8.1 kB URL HTTP/2 static.criteo.net/flash/icon/criteo_logo_2021.svg
IP 178.250.2.130:0
Hash beb868d53729e827dea47338a87041b5
11e7d0030e1e82155d8a440ab27d80cecf978aff
aa978e7c04dabdd8d4b3176f464bc605777bd0b917e01266f905636c6cb88543
GET /flash/icon/criteo_logo_2021.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 08 Oct 2022 20:06:04 GMT
content-type: image/svg+xml
last-modified: Thu, 27 May 2021 13:21:59 GMT
etag: W/"60af9cf7-891"
expires: Tue, 03 Oct 2023 20:06:04 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Flyle---scott_byxor_bla_barnklader_59669-2roz.jpg&v=3&w=800&s=5SaLif6A6dTq_JZJ8wUGZHvc&b=800
178.250.2.135200 OK 9.0 kB URL HTTP/2 pix.eu.criteo.net/img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Flyle---scott_byxor_bla_barnklader_59669-2roz.jpg&v=3&w=800&s=5SaLif6A6dTq_JZJ8wUGZHvc&b=800
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x650, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 292fb5fd76913e07414731be84069f3f
135312da1468cd6f484e27e911cb772a35d27f0d
fec79e5572d926ad51506ba1d9e22b6d9809cb55fe5e34d2a7b413852e1e91e6
GET /img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Flyle---scott_byxor_bla_barnklader_59669-2roz.jpg&v=3&w=800&s=5SaLif6A6dTq_JZJ8wUGZHvc&b=800 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=318973
expires: Wed, 12 Oct 2022 12:42:18 GMT
date: Sat, 08 Oct 2022 20:06:04 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 9032
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Flevis_jeans_bla_barnklader_53678-r5g7.jpg&v=3&w=800&s=lhtnR8eLE4e3EnRxhhRD7KGe&b=800
178.250.2.135200 OK 16 kB URL HTTP/2 pix.eu.criteo.net/img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Flevis_jeans_bla_barnklader_53678-r5g7.jpg&v=3&w=800&s=lhtnR8eLE4e3EnRxhhRD7KGe&b=800
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x650, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash f8aee01cc79fb7e775dd201b9f5c14f7
75c666d41475611a611a559b2ddfa2b5136fa4f6
9392724c8f91da902df6f76db398b0f252635237fe992e9bdbd118b899bfb0fb
GET /img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Flevis_jeans_bla_barnklader_53678-r5g7.jpg&v=3&w=800&s=lhtnR8eLE4e3EnRxhhRD7KGe&b=800 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=2318206
expires: Fri, 04 Nov 2022 16:02:51 GMT
date: Sat, 08 Oct 2022 20:06:03 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 15960
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?h=268&m=0&partner=56439&q=80&r=0&u=http%3A%2F%2Fstatic.fr.eu.criteo.net%2Fdesign%2Fdt%2F56439%2F220519%2F40fdea86a5794427883cb689a4acb28f_28bfaebc-d498-4d63-b320-0482a5feeeb3.png&v=3&w=596&s=w1vfz2omJPCIdiZFXYTTm9AY
178.250.2.135200 OK 7.5 kB URL HTTP/2 pix.eu.criteo.net/img/img?h=268&m=0&partner=56439&q=80&r=0&u=http%3A%2F%2Fstatic.fr.eu.criteo.net%2Fdesign%2Fdt%2F56439%2F220519%2F40fdea86a5794427883cb689a4acb28f_28bfaebc-d498-4d63-b320-0482a5feeeb3.png&v=3&w=596&s=w1vfz2omJPCIdiZFXYTTm9AY
IP 178.250.2.135:0
File type PNG image data, 576 x 214, 8-bit/color RGB, non-interlaced\012- data
Hash e0200f7ef7627d4dba9e03966c789ec8
1646334f01abf2493a1d1fe3f6e006755eb57ac4
0e3f5466cda42141dcdd4b88b394f97361f94bad2422108f4a57bb294a9c0040
GET /img/img?h=268&m=0&partner=56439&q=80&r=0&u=http%3A%2F%2Fstatic.fr.eu.criteo.net%2Fdesign%2Fdt%2F56439%2F220519%2F40fdea86a5794427883cb689a4acb28f_28bfaebc-d498-4d63-b320-0482a5feeeb3.png&v=3&w=596&s=w1vfz2omJPCIdiZFXYTTm9AY HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30435477
expires: Tue, 26 Sep 2023 02:24:02 GMT
date: Sat, 08 Oct 2022 20:06:04 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 7460
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/png
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Fnike_strumpor-sockor_svart_barnklader_53370-34-y.jpg&v=3&w=800&s=jngQcAruvOC620cYF-vMNeBF&b=800
178.250.2.135200 OK 18 kB URL HTTP/2 pix.eu.criteo.net/img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Fnike_strumpor-sockor_svart_barnklader_53370-34-y.jpg&v=3&w=800&s=jngQcAruvOC620cYF-vMNeBF&b=800
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x650, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 933fe1f3b19c9f59dbb34818a1cb588c
65a83740ff3bcb7cb5362f0db5661e14b203819c
4d62307dea81645eac7eab8ea8dc5d58bf6165b51b9cbb2f7c0da904ccc13085
GET /img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Fnike_strumpor-sockor_svart_barnklader_53370-34-y.jpg&v=3&w=800&s=jngQcAruvOC620cYF-vMNeBF&b=800 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=2321186
expires: Fri, 04 Nov 2022 16:52:30 GMT
date: Sat, 08 Oct 2022 20:06:04 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 17944
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Fpuma_huvtrojor-hoodies_gron_barnklader_59536-lunf.jpg&v=3&w=800&s=8w2Gj-st7U_gPkNjueliBQpx&b=400
178.250.2.135200 OK 6.8 kB URL HTTP/2 pix.eu.criteo.net/img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Fpuma_huvtrojor-hoodies_gron_barnklader_59536-lunf.jpg&v=3&w=800&s=8w2Gj-st7U_gPkNjueliBQpx&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 308x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c2efbe46cf0e0ee41f400efe56f4c786
a35ed8697410ce87767fbbb44f8aecb7c55b906a
1e9dd35ac17ca9e599c27f52f48709a005ae24ecceaf47c13137eefeb8d681da
GET /img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Fpuma_huvtrojor-hoodies_gron_barnklader_59536-lunf.jpg&v=3&w=800&s=8w2Gj-st7U_gPkNjueliBQpx&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=2588710
expires: Mon, 07 Nov 2022 19:11:15 GMT
date: Sat, 08 Oct 2022 20:06:03 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 6806
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/privacy.svg
178.250.2.130200 OK 7.3 kB URL HTTP/2 static.criteo.net/flash/icon/privacy.svg
IP 178.250.2.130:0
Hash 8eae75d6d541fc0f95a34176399193ac
395d3d6644428900f6aea6bccfd3ee1be8542153
60f055fcd1b5964fa4b97eff011b17dd7c11bc14078feb95eadd84656cf8683a
GET /flash/icon/privacy.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 08 Oct 2022 20:06:04 GMT
content-type: image/svg+xml
last-modified: Wed, 19 Feb 2020 10:57:21 GMT
etag: W/"5e4d1491-646"
expires: Tue, 03 Oct 2023 20:06:04 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Fgant_huvtrojor_gra_barnklader_31337--chs.jpg&v=3&w=800&s=Fad8nIjkAG2y7cjkL_8csbGe&b=800
178.250.2.135200 OK 19 kB URL HTTP/2 pix.eu.criteo.net/img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Fgant_huvtrojor_gra_barnklader_31337--chs.jpg&v=3&w=800&s=Fad8nIjkAG2y7cjkL_8csbGe&b=800
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x650, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash f52ddf63e28d6149e84b4baf4dbb3956
cb8010818648b528edfcc166894bb4f445c83de6
49593921f4aef7f550a23aeb9ff510e5a413dc4ebb83e0af4cc8a3a8226dcc0e
GET /img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Fgant_huvtrojor_gra_barnklader_31337--chs.jpg&v=3&w=800&s=Fad8nIjkAG2y7cjkL_8csbGe&b=800 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=2401169
expires: Sat, 05 Nov 2022 15:05:33 GMT
date: Sat, 08 Oct 2022 20:06:03 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 19116
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Fnike_strumpor-sockor_vit_barnklader_53371-4zsj.jpg&v=3&w=800&s=MegUQ4eaDK5GBuOVdPJOwf5R&b=800
178.250.2.135200 OK 25 kB URL HTTP/2 pix.eu.criteo.net/img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Fnike_strumpor-sockor_vit_barnklader_53371-4zsj.jpg&v=3&w=800&s=MegUQ4eaDK5GBuOVdPJOwf5R&b=800
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x650, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 46462b9c5983c6f9b8baab9a4772cadc
af27d930b8874dae1575631bf77417be842b6058
e420f69b0dc52fd98cebd5492534f8be7464c6ab2be3857141901e21e8b81687
GET /img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Fnike_strumpor-sockor_vit_barnklader_53371-4zsj.jpg&v=3&w=800&s=MegUQ4eaDK5GBuOVdPJOwf5R&b=800 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=2312870
expires: Fri, 04 Nov 2022 14:33:54 GMT
date: Sat, 08 Oct 2022 20:06:04 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 24582
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Flyle---scott_trojor-sweatshirts_bla_barnklader_54672-5vp3.jpg&v=3&w=800&s=5UfL0lwoyP7ugyJwgkRQfrBr&b=400
178.250.2.135200 OK 8.0 kB URL HTTP/2 pix.eu.criteo.net/img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Flyle---scott_trojor-sweatshirts_bla_barnklader_54672-5vp3.jpg&v=3&w=800&s=5UfL0lwoyP7ugyJwgkRQfrBr&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 308x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash cb3928446a3757a67886f33ab56ac1eb
c0d70994580262cb1f98cdc31ffc85aba25ae5e1
c4c0239ed2d04a3b4a71d6b80f5a7f40284e79344f033d8fac000317236ecdb4
GET /img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Flyle---scott_trojor-sweatshirts_bla_barnklader_54672-5vp3.jpg&v=3&w=800&s=5UfL0lwoyP7ugyJwgkRQfrBr&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=2329802
expires: Fri, 04 Nov 2022 19:16:07 GMT
date: Sat, 08 Oct 2022 20:06:04 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 8030
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Fjuicy-couture_huvtrojor-hoodies_gron_barnklader_58253-ih1q.jpg&v=3&w=800&s=jBV97WwZHIdmgNsoP2-EK5pL&b=400
178.250.2.135200 OK 6.3 kB URL HTTP/2 pix.eu.criteo.net/img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Fjuicy-couture_huvtrojor-hoodies_gron_barnklader_58253-ih1q.jpg&v=3&w=800&s=jBV97WwZHIdmgNsoP2-EK5pL&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 308x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 8fc572297fbb310619b916b2eb1cf8bf
902ca73bbcc93c316fdd9c59272d1f026ead841b
852f2bff7c337a0f1b2a1189d02257c2a371cf0d68506b5441fc91bcce20aba2
GET /img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Fjuicy-couture_huvtrojor-hoodies_gron_barnklader_58253-ih1q.jpg&v=3&w=800&s=jBV97WwZHIdmgNsoP2-EK5pL&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=122863
expires: Mon, 10 Oct 2022 06:13:48 GMT
date: Sat, 08 Oct 2022 20:06:03 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 6314
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?h=152&m=0&partner=56439&q=80&r=0&u=http%3A%2F%2Fstatic.fr.eu.criteo.net%2Fdesign%2Fdt%2F56439%2F220519%2F40fdea86a5794427883cb689a4acb28f_28bfaebc-d498-4d63-b320-0482a5feeeb3.png&v=3&w=668&s=Zthk6xiKkv6G_N_-Icdx4re0
178.250.2.135200 OK 14 kB URL HTTP/2 pix.eu.criteo.net/img/img?h=152&m=0&partner=56439&q=80&r=0&u=http%3A%2F%2Fstatic.fr.eu.criteo.net%2Fdesign%2Fdt%2F56439%2F220519%2F40fdea86a5794427883cb689a4acb28f_28bfaebc-d498-4d63-b320-0482a5feeeb3.png&v=3&w=668&s=Zthk6xiKkv6G_N_-Icdx4re0
IP 178.250.2.135:0
File type PNG image data, 409 x 152, 8-bit/color RGB, non-interlaced\012- data
Hash eada1b976efaf83cf373f4462ddfd75c
c18fb9f6d7cc99de6bf2eb3a6458ef40e6b7430a
256e870bb73225180a52b54c83076d4e0257d8302421efefdb47b7689f70b2cd
GET /img/img?h=152&m=0&partner=56439&q=80&r=0&u=http%3A%2F%2Fstatic.fr.eu.criteo.net%2Fdesign%2Fdt%2F56439%2F220519%2F40fdea86a5794427883cb689a4acb28f_28bfaebc-d498-4d63-b320-0482a5feeeb3.png&v=3&w=668&s=Zthk6xiKkv6G_N_-Icdx4re0 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30435477
expires: Tue, 26 Sep 2023 02:24:02 GMT
date: Sat, 08 Oct 2022 20:06:03 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 14059
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/png
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Flyle---scott_jackor-vastar_svart_barnklader_27402-6ud2.jpg&v=3&w=800&s=s6uV1bgqHJDgu-c-v1IlaK3c&b=400
178.250.2.135200 OK 7.5 kB URL HTTP/2 pix.eu.criteo.net/img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Flyle---scott_jackor-vastar_svart_barnklader_27402-6ud2.jpg&v=3&w=800&s=s6uV1bgqHJDgu-c-v1IlaK3c&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 308x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 9bf7c0633537c05e57c4964a126be656
e88d253f02d737c301f0757b3bc8e55c133c343c
5a488147f265cce2c7bb44d5f8bc2897901040193f8d5f7fc6998b87d4b1f221
GET /img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Flyle---scott_jackor-vastar_svart_barnklader_27402-6ud2.jpg&v=3&w=800&s=s6uV1bgqHJDgu-c-v1IlaK3c&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=2319654
expires: Fri, 04 Nov 2022 16:26:59 GMT
date: Sat, 08 Oct 2022 20:06:04 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 7548
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?cq=256&h=400&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Fjuicy-couture_huvtrojor-hoodies_rosa_barnklader_58228-lm5v.jpg&v=3&w=400&s=ofyX28vd1pI9PlyFJmfy7Nb7&b=400
178.250.2.135200 OK 10 kB URL HTTP/2 pix.eu.criteo.net/img/img?cq=256&h=400&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Fjuicy-couture_huvtrojor-hoodies_rosa_barnklader_58228-lm5v.jpg&v=3&w=400&s=ofyX28vd1pI9PlyFJmfy7Nb7&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 308x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 7ab3b94661668675c97db1b62cf30515
55aa6b768a0d17db9461a8770fd50e28db07efee
d353fed8133eb28a5b57c2419b49d6cd4eedd05286e1b8d0d88aae6ec342598f
GET /img/img?cq=256&h=400&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Fjuicy-couture_huvtrojor-hoodies_rosa_barnklader_58228-lm5v.jpg&v=3&w=400&s=ofyX28vd1pI9PlyFJmfy7Nb7&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=2100614
expires: Wed, 02 Nov 2022 03:36:19 GMT
date: Sat, 08 Oct 2022 20:06:03 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 10236
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?cq=256&h=400&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Flyle---scott_huvtrojor-hoodies_gron_barnklader_54653-flr1.jpg&v=3&w=400&s=Kv5lkrJaNPLA1xdiCDMqgW64&b=400
178.250.2.135200 OK 6.2 kB URL HTTP/2 pix.eu.criteo.net/img/img?cq=256&h=400&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Flyle---scott_huvtrojor-hoodies_gron_barnklader_54653-flr1.jpg&v=3&w=400&s=Kv5lkrJaNPLA1xdiCDMqgW64&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 308x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0f0ad19aba286848c41ee6edd8116bdd
1182202a1bc22ecf3b263d126c321406c80dcbce
04c806b0166cacd12547455d2059db9db00c19e2ce39a0b320bdc4412889cba3
GET /img/img?cq=256&h=400&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Flyle---scott_huvtrojor-hoodies_gron_barnklader_54653-flr1.jpg&v=3&w=400&s=Kv5lkrJaNPLA1xdiCDMqgW64&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=2329100
expires: Fri, 04 Nov 2022 19:04:24 GMT
date: Sat, 08 Oct 2022 20:06:03 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 6188
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Flyle---scott_toppar-blusar_svart_barnklader_54687-2nf0.jpg&v=3&w=800&s=2fsuzDtbZK0FBX4rFQDWWkUk&b=800
178.250.2.135200 OK 13 kB URL HTTP/2 pix.eu.criteo.net/img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Flyle---scott_toppar-blusar_svart_barnklader_54687-2nf0.jpg&v=3&w=800&s=2fsuzDtbZK0FBX4rFQDWWkUk&b=800
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x650, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 46a536ceb43ba253d86de620da4c40be
89e26c6172a2ef6888c43fff7525c7691d2ff9cf
db041cdc36bee572f5bdb7a6670324de37e0fa5378cea0836a4753a76e787ca8
GET /img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Flyle---scott_toppar-blusar_svart_barnklader_54687-2nf0.jpg&v=3&w=800&s=2fsuzDtbZK0FBX4rFQDWWkUk&b=800 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=2340804
expires: Fri, 04 Nov 2022 22:19:28 GMT
date: Sat, 08 Oct 2022 20:06:03 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 12912
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/privacy_small.svg
178.250.2.130200 OK 6.0 kB URL HTTP/2 static.criteo.net/flash/icon/privacy_small.svg
IP 178.250.2.130:0
Hash 3ad60606a485259023d763ba09d78e2a
782e2b55c9e4ce1966668debce6d5862394b479e
38960f93c2ab316ced334670d300c6a85239e164e6c6873350a890aeeb77b9cf
GET /flash/icon/privacy_small.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 08 Oct 2022 20:06:04 GMT
content-type: image/svg+xml
last-modified: Tue, 11 Feb 2020 14:30:28 GMT
etag: W/"5e42ba84-6aa"
expires: Tue, 03 Oct 2023 20:06:04 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/adchoices_en.svg
178.250.2.130200 OK 7.9 kB URL HTTP/2 static.criteo.net/flash/icon/adchoices_en.svg
IP 178.250.2.130:0
Hash 8329c48e8c0d3bc863fca3fa33ddf35c
0927edb63e62d9a43bf68471f619b0bbfc3894ab
9634c098dad3b85fe5a521be14c6450ccff80fd2652eb717906c2f973a4d2bb1
GET /flash/icon/adchoices_en.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 08 Oct 2022 20:06:04 GMT
content-type: image/svg+xml
last-modified: Tue, 11 Feb 2020 14:27:58 GMT
etag: W/"5e42b9ee-759"
expires: Tue, 03 Oct 2023 20:06:04 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Flyle---scott_jackor_gron_barnklader_54664-0v-2.jpg&v=3&w=800&s=AYnH2XH-2qGB4ETjQktdvGuc&b=400
178.250.2.135200 OK 9.4 kB URL HTTP/2 pix.eu.criteo.net/img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Flyle---scott_jackor_gron_barnklader_54664-0v-2.jpg&v=3&w=800&s=AYnH2XH-2qGB4ETjQktdvGuc&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 308x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c826859fe66a2ed9c52769102fc6f20b
f0843d7c195953cccba6a959578b27585c6afdbe
3d9bd026835c9a77f8897cdb0aa4b37a00725c7fcf0a7e9bf5a5cca97142baf5
GET /img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Flyle---scott_jackor_gron_barnklader_54664-0v-2.jpg&v=3&w=800&s=AYnH2XH-2qGB4ETjQktdvGuc&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=2321060
expires: Fri, 04 Nov 2022 16:50:24 GMT
date: Sat, 08 Oct 2022 20:06:03 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 9364
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/animejs/animejs.js
178.250.2.130200 OK 12 kB URL HTTP/2 static.criteo.net/animejs/animejs.js
IP 178.250.2.130:0
Hash 6e048d2f0411281b4f3cdcaa9140d99a
db54a4b1a349ea3739c3eb02178ba33b76547076
bd546d4f25e69a8dd6a89a4e068c0526e791998e69811eb658c1ef5aa45bea23
GET /animejs/animejs.js HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 08 Oct 2022 20:06:04 GMT
content-type: text/javascript
last-modified: Tue, 26 Mar 2019 17:44:11 GMT
etag: W/"5c9a64eb-3181"
expires: Tue, 03 Oct 2023 20:06:04 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Flyle---scott_shorts_svart_barnklader_54695-6fnt.jpg&v=3&w=800&s=VBNGbe5SM1KvK9PjCmsuNI06&b=400
178.250.2.135200 OK 5.4 kB URL HTTP/2 pix.eu.criteo.net/img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Flyle---scott_shorts_svart_barnklader_54695-6fnt.jpg&v=3&w=800&s=VBNGbe5SM1KvK9PjCmsuNI06&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 308x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 98b75e770ffdb5449851f9731776d297
ed14bafa98fc0928412bd9d93833323eee9a82f1
151aa85de35f75a96e7a8fbba8f213ccd301c53313fa7ce3d5aa8a45ff492fae
GET /img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Flyle---scott_shorts_svart_barnklader_54695-6fnt.jpg&v=3&w=800&s=VBNGbe5SM1KvK9PjCmsuNI06&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=2325726
expires: Fri, 04 Nov 2022 18:08:11 GMT
date: Sat, 08 Oct 2022 20:06:03 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 5436
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Flyle---scott_jackor_svart_barnklader_58628-jhj4.jpg&v=3&w=800&s=5AYNZsxo1_z3I64J-8RqBHNN&b=400
178.250.2.135200 OK 5.0 kB URL HTTP/2 pix.eu.criteo.net/img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Flyle---scott_jackor_svart_barnklader_58628-jhj4.jpg&v=3&w=800&s=5AYNZsxo1_z3I64J-8RqBHNN&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 308x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash fe720d7c4abbeb33e828bd507c567339
f830b9724daafdf05c0856a51a14e50d6899fafb
1032b36b24196e196b926e11edd456e4dbd6fd4501fce99290e3e42854cf7373
GET /img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Flyle---scott_jackor_svart_barnklader_58628-jhj4.jpg&v=3&w=800&s=5AYNZsxo1_z3I64J-8RqBHNN&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=816985
expires: Tue, 18 Oct 2022 07:02:29 GMT
date: Sat, 08 Oct 2022 20:06:03 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 4966
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Fnike_strumpor-sockor_svart_barnklader_53370-34-y.jpg&v=3&w=800&s=jngQcAruvOC620cYF-vMNeBF&b=400
178.250.2.135200 OK 5.3 kB URL HTTP/2 pix.eu.criteo.net/img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Fnike_strumpor-sockor_svart_barnklader_53370-34-y.jpg&v=3&w=800&s=jngQcAruvOC620cYF-vMNeBF&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 308x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e7ff6120192e279e2d45f4547ae6c555
82e04ae117d92d9a26f74a839622e59568f1f261
4954008b2514ac8d3edb327049417149ab5ba7a3e11939e45e5e7a11f4745df1
GET /img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Fnike_strumpor-sockor_svart_barnklader_53370-34-y.jpg&v=3&w=800&s=jngQcAruvOC620cYF-vMNeBF&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=2321186
expires: Fri, 04 Nov 2022 16:52:30 GMT
date: Sat, 08 Oct 2022 20:06:04 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 5258
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Flyle---scott_huvtrojor-hoodies_gron_barnklader_54653-flr1.jpg&v=3&w=800&s=UiXUb445T9-yEo-qKjgN75TK&b=400
178.250.2.135200 OK 6.2 kB URL HTTP/2 pix.eu.criteo.net/img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Flyle---scott_huvtrojor-hoodies_gron_barnklader_54653-flr1.jpg&v=3&w=800&s=UiXUb445T9-yEo-qKjgN75TK&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 308x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0f0ad19aba286848c41ee6edd8116bdd
1182202a1bc22ecf3b263d126c321406c80dcbce
04c806b0166cacd12547455d2059db9db00c19e2ce39a0b320bdc4412889cba3
GET /img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Flyle---scott_huvtrojor-hoodies_gron_barnklader_54653-flr1.jpg&v=3&w=800&s=UiXUb445T9-yEo-qKjgN75TK&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=2329100
expires: Fri, 04 Nov 2022 19:04:24 GMT
date: Sat, 08 Oct 2022 20:06:03 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 6188
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?cq=256&h=400&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Fadidas-originals_byxor_rosa_barnklader_58261-lf-v.jpg&v=3&w=400&s=cFrNA2EMLyrUbNNhXTZyUKRb&b=400
178.250.2.135200 OK 4.5 kB URL HTTP/2 pix.eu.criteo.net/img/img?cq=256&h=400&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Fadidas-originals_byxor_rosa_barnklader_58261-lf-v.jpg&v=3&w=400&s=cFrNA2EMLyrUbNNhXTZyUKRb&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 308x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 6290ea84f95f14f37d1b89db056c7717
67ae41a04179a3666acafe9c7e292f4a969da033
e46063aeacecc41c41cb5dfd2214610bc55d0d37d7c4557612ab257699131b56
GET /img/img?cq=256&h=400&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Fadidas-originals_byxor_rosa_barnklader_58261-lf-v.jpg&v=3&w=400&s=cFrNA2EMLyrUbNNhXTZyUKRb&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=2401575
expires: Sat, 05 Nov 2022 15:12:20 GMT
date: Sat, 08 Oct 2022 20:06:03 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 4514
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?cq=256&h=400&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Flyle---scott_jackor_gron_barnklader_54664-0v-2.jpg&v=3&w=400&s=sCj0ipAij8n4KSYV6OjvvHoM&b=400
178.250.2.135200 OK 9.4 kB URL HTTP/2 pix.eu.criteo.net/img/img?cq=256&h=400&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Flyle---scott_jackor_gron_barnklader_54664-0v-2.jpg&v=3&w=400&s=sCj0ipAij8n4KSYV6OjvvHoM&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 308x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c826859fe66a2ed9c52769102fc6f20b
f0843d7c195953cccba6a959578b27585c6afdbe
3d9bd026835c9a77f8897cdb0aa4b37a00725c7fcf0a7e9bf5a5cca97142baf5
GET /img/img?cq=256&h=400&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Flyle---scott_jackor_gron_barnklader_54664-0v-2.jpg&v=3&w=400&s=sCj0ipAij8n4KSYV6OjvvHoM&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=2321060
expires: Fri, 04 Nov 2022 16:50:24 GMT
date: Sat, 08 Oct 2022 20:06:04 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 9364
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?cq=256&h=400&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Fcolmar_jackor-vastar_gron_barnklader_51981-r39-.jpg&v=3&w=400&s=oa6JguxzT13lQo3qxiKVpvQ-&b=400
178.250.2.135200 OK 7.3 kB URL HTTP/2 pix.eu.criteo.net/img/img?cq=256&h=400&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Fcolmar_jackor-vastar_gron_barnklader_51981-r39-.jpg&v=3&w=400&s=oa6JguxzT13lQo3qxiKVpvQ-&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 308x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1333d2e795912168ac57dd158d167b27
a4c1ce0865f494665ee415f196357568ab087cc2
70cb58851da635909a4cb45175094305d5771806225465beb5fc8d89bcfc1d13
GET /img/img?cq=256&h=400&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Fcolmar_jackor-vastar_gron_barnklader_51981-r39-.jpg&v=3&w=400&s=oa6JguxzT13lQo3qxiKVpvQ-&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=3365
expires: Sat, 08 Oct 2022 21:02:09 GMT
date: Sat, 08 Oct 2022 20:06:04 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 7344
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?cq=256&h=400&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Flyle---scott_trojor-sweatshirts_bla_barnklader_54672-5vp3.jpg&v=3&w=400&s=wsFfNlZovrMCq2t1tywxXagr&b=400
178.250.2.135200 OK 8.0 kB URL HTTP/2 pix.eu.criteo.net/img/img?cq=256&h=400&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Flyle---scott_trojor-sweatshirts_bla_barnklader_54672-5vp3.jpg&v=3&w=400&s=wsFfNlZovrMCq2t1tywxXagr&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 308x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash cb3928446a3757a67886f33ab56ac1eb
c0d70994580262cb1f98cdc31ffc85aba25ae5e1
c4c0239ed2d04a3b4a71d6b80f5a7f40284e79344f033d8fac000317236ecdb4
GET /img/img?cq=256&h=400&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Flyle---scott_trojor-sweatshirts_bla_barnklader_54672-5vp3.jpg&v=3&w=400&s=wsFfNlZovrMCq2t1tywxXagr&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=2329802
expires: Fri, 04 Nov 2022 19:16:07 GMT
date: Sat, 08 Oct 2022 20:06:03 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 8030
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?cq=256&h=400&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Flyle---scott_shorts_svart_barnklader_54695-6fnt.jpg&v=3&w=400&s=5-0gxUIAD0Jwd-S1PRPw6jRT&b=400
178.250.2.135200 OK 5.4 kB URL HTTP/2 pix.eu.criteo.net/img/img?cq=256&h=400&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Flyle---scott_shorts_svart_barnklader_54695-6fnt.jpg&v=3&w=400&s=5-0gxUIAD0Jwd-S1PRPw6jRT&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 308x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 98b75e770ffdb5449851f9731776d297
ed14bafa98fc0928412bd9d93833323eee9a82f1
151aa85de35f75a96e7a8fbba8f213ccd301c53313fa7ce3d5aa8a45ff492fae
GET /img/img?cq=256&h=400&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Flyle---scott_shorts_svart_barnklader_54695-6fnt.jpg&v=3&w=400&s=5-0gxUIAD0Jwd-S1PRPw6jRT&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=2325726
expires: Fri, 04 Nov 2022 18:08:11 GMT
date: Sat, 08 Oct 2022 20:06:04 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 5436
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?cq=256&h=400&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Fgrunt_vastar_gron_barnklader_56848-ej_v.jpg&v=3&w=400&s=TA_sjKwueMa_7AUqmFHX4n7j&b=400
178.250.2.135200 OK 7.1 kB URL HTTP/2 pix.eu.criteo.net/img/img?cq=256&h=400&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Fgrunt_vastar_gron_barnklader_56848-ej_v.jpg&v=3&w=400&s=TA_sjKwueMa_7AUqmFHX4n7j&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 308x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 7c1853a2e01682c2689011c54ab99c08
7fc02f0847951974d9c25d1efa4a107433968f84
2815e39acf753b6b28ce8abd1a950f82835cf36136ec4eee1e927328d47ed9f8
GET /img/img?cq=256&h=400&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Fgrunt_vastar_gron_barnklader_56848-ej_v.jpg&v=3&w=400&s=TA_sjKwueMa_7AUqmFHX4n7j&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=762721
expires: Mon, 17 Oct 2022 15:58:06 GMT
date: Sat, 08 Oct 2022 20:06:04 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 7064
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?cq=256&h=400&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Flyle---scott_shorts_gra_barnklader_20675-lcmc.jpg&v=3&w=400&s=ZF9s0YW6-qjzKKKQIPnrRcux&b=400
178.250.2.135200 OK 6.8 kB URL HTTP/2 pix.eu.criteo.net/img/img?cq=256&h=400&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Flyle---scott_shorts_gra_barnklader_20675-lcmc.jpg&v=3&w=400&s=ZF9s0YW6-qjzKKKQIPnrRcux&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 308x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 433d19d662335fdcc63454bb173448a6
3599936fbc2a8384cbb06554e20e0c6b3151298a
991853559cb61353885a991efc20ed92b63536ceddfb8151c4ca1a7047a87e56
GET /img/img?cq=256&h=400&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Flyle---scott_shorts_gra_barnklader_20675-lcmc.jpg&v=3&w=400&s=ZF9s0YW6-qjzKKKQIPnrRcux&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=2313300
expires: Fri, 04 Nov 2022 14:41:04 GMT
date: Sat, 08 Oct 2022 20:06:04 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 6834
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Flyle---scott_shorts_svart_barnklader_54695-6fnt.jpg&v=3&w=800&s=VBNGbe5SM1KvK9PjCmsuNI06&b=800
178.250.2.135200 OK 9.8 kB URL HTTP/2 pix.eu.criteo.net/img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Flyle---scott_shorts_svart_barnklader_54695-6fnt.jpg&v=3&w=800&s=VBNGbe5SM1KvK9PjCmsuNI06&b=800
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x650, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 331babc0707d3aa913a2e6ae93739689
5deb6321eb8903dd07d1a70dcbb39c86c00c9b05
7bdc4319425c1e3f385cc637805c3d2717bfd80df570f0f053a774fa905be2de
GET /img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Flyle---scott_shorts_svart_barnklader_54695-6fnt.jpg&v=3&w=800&s=VBNGbe5SM1KvK9PjCmsuNI06&b=800 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=2325726
expires: Fri, 04 Nov 2022 18:08:11 GMT
date: Sat, 08 Oct 2022 20:06:04 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 9808
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Fcolmar_jackor-vastar_gron_barnklader_51981-r39-.jpg&v=3&w=800&s=hQMp31dEp7Wa7S7DAwrHBsC3&b=800
178.250.2.135200 OK 15 kB URL HTTP/2 pix.eu.criteo.net/img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Fcolmar_jackor-vastar_gron_barnklader_51981-r39-.jpg&v=3&w=800&s=hQMp31dEp7Wa7S7DAwrHBsC3&b=800
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x650, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e854ff12e9f0d5208f47427faeb006c4
b436df97ada4ce679fc3240c9134f65e2e4fe174
447ca1a8143df36b34512fdc360bcc5f8568492e394d8e5e223a7ffe0a355f4c
GET /img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Fcolmar_jackor-vastar_gron_barnklader_51981-r39-.jpg&v=3&w=800&s=hQMp31dEp7Wa7S7DAwrHBsC3&b=800 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=3365
expires: Sat, 08 Oct 2022 21:02:09 GMT
date: Sat, 08 Oct 2022 20:06:03 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 14978
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Flyle---scott_trojor-sweatshirts_bla_barnklader_54672-5vp3.jpg&v=3&w=800&s=5UfL0lwoyP7ugyJwgkRQfrBr&b=800
178.250.2.135200 OK 16 kB URL HTTP/2 pix.eu.criteo.net/img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Flyle---scott_trojor-sweatshirts_bla_barnklader_54672-5vp3.jpg&v=3&w=800&s=5UfL0lwoyP7ugyJwgkRQfrBr&b=800
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 500x650, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 3358705e9602e91cb26e4a363e2bb25e
46fc55ef635c60fbb4cf38e1aff9ef9536edf011
fb0556f280c0d6d01e99ddb50990d377c327bbab8ab73d256e651e29ebbfb8c2
GET /img/img?cq=256&h=800&m=0&partner=56439&q=80&r=0&u=https%3A%2F%2Fd1zubn5gsgrqpe.cloudfront.net%2Fimages%2Fproduct%2Flyle---scott_trojor-sweatshirts_bla_barnklader_54672-5vp3.jpg&v=3&w=800&s=5UfL0lwoyP7ugyJwgkRQfrBr&b=800 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=2329802
expires: Fri, 04 Nov 2022 19:16:07 GMT
date: Sat, 08 Oct 2022 20:06:03 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 15676
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?h=176&m=0&partner=56439&q=80&r=0&u=http%3A%2F%2Fstatic.fr.eu.criteo.net%2Fdesign%2Fdt%2F56439%2F220519%2F40fdea86a5794427883cb689a4acb28f_28bfaebc-d498-4d63-b320-0482a5feeeb3.png&v=3&w=412&s=-qzmo9etoMRss_S0mOyt2Q4S
178.250.2.135200 OK 14 kB URL HTTP/2 pix.eu.criteo.net/img/img?h=176&m=0&partner=56439&q=80&r=0&u=http%3A%2F%2Fstatic.fr.eu.criteo.net%2Fdesign%2Fdt%2F56439%2F220519%2F40fdea86a5794427883cb689a4acb28f_28bfaebc-d498-4d63-b320-0482a5feeeb3.png&v=3&w=412&s=-qzmo9etoMRss_S0mOyt2Q4S
IP 178.250.2.135:0
File type PNG image data, 412 x 153, 8-bit/color RGB, non-interlaced\012- data
Hash cb5e807d798d56bfa9dc28e334f4295e
88367ed5aced85d1ba800079e24703bb3fecbd78
efa45848ec85a1fd786fd69f5795ae205dfac0dd261fb52846a898c6032668f5
GET /img/img?h=176&m=0&partner=56439&q=80&r=0&u=http%3A%2F%2Fstatic.fr.eu.criteo.net%2Fdesign%2Fdt%2F56439%2F220519%2F40fdea86a5794427883cb689a4acb28f_28bfaebc-d498-4d63-b320-0482a5feeeb3.png&v=3&w=412&s=-qzmo9etoMRss_S0mOyt2Q4S HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=30435477
expires: Tue, 26 Sep 2023 02:24:02 GMT
date: Sat, 08 Oct 2022 20:06:03 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 13974
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/png
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 1b523949818a5a16753637f9ad58584b
5d31dd0a86b616b95aa2855ced5ddc1b5d088213
6d4dc5c21d9a3ae5f2d4f259250be56bf1852336fa674f9ab926cdd395c1a107
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:06:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 3c653b7d4151c89bf97b26a6bf854af2
cbcefae0da43945c106c7ab708bb851348b35481
d273d605cfa789a4350cf4e9d56016820eb8b7999e71c1ef9ecbeb3da62b82b5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:06:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0878feb685db67bbc8b23e0d2c8044c3
0f9925babde560077260867ccdce7387395596b0
e25377c71a070204cc5a9b8fd370fcd174c6bedbd6013efe8707ac2e89c600bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:06:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 3c653b7d4151c89bf97b26a6bf854af2
cbcefae0da43945c106c7ab708bb851348b35481
d273d605cfa789a4350cf4e9d56016820eb8b7999e71c1ef9ecbeb3da62b82b5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:06:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 64361a0d33a30cc87ffca1b03174b2a1
9682f404b3984d4febc6b86735104e2aa316dbb0
d719b59896c3a588cf56d93558f45ed49539e4b7cbc7a770597f77430c793587
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:06:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.criteo.net/design/dt/0c622d256dee425682575f30240ec196_gotham-black-regular.woff
178.250.2.130200 OK 26 kB URL HTTP/2 static.criteo.net/design/dt/0c622d256dee425682575f30240ec196_gotham-black-regular.woff
IP 178.250.2.130:0
File type Web Open Font Format, TrueType, length 26324, version 1.0\012- data
Hash 9acd111085f701eaf4fea7135f15ffa7
176a9dd986032b3647d1a40458db1db7d965f8bc
5a4a3459c15a5266e888bb12bbe9041b0f72aed89306411a5d5e69e7a1aa9f4d
GET /design/dt/0c622d256dee425682575f30240ec196_gotham-black-regular.woff HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 08 Oct 2022 20:06:04 GMT
content-type: text/plain; charset=UTF-8
content-length: 26324
last-modified: Mon, 06 Jul 2020 12:19:39 GMT
etag: "5f0316db-66d4"
expires: Tue, 03 Oct 2023 20:06:04 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/design/dt/c05716d7ca7548d789c4d0b3d5042816_gotham-black-italic.woff
178.250.2.130200 OK 17 kB URL HTTP/2 static.criteo.net/design/dt/c05716d7ca7548d789c4d0b3d5042816_gotham-black-italic.woff
IP 178.250.2.130:0
File type Web Open Font Format, CFF, length 17120, version 1.0\012- data
Hash f683179206a26fcb9ef35c6d14f6f7c7
c6da815fa6502dd63eb2606efd112fdd1eb9e79e
a26a23639f1408dca8879503cd479d3f823b085b727437c9d66c33ca3f75c08f
GET /design/dt/c05716d7ca7548d789c4d0b3d5042816_gotham-black-italic.woff HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 08 Oct 2022 20:06:04 GMT
content-type: text/plain; charset=UTF-8
content-length: 17120
last-modified: Mon, 06 Jul 2020 12:19:39 GMT
etag: "5f0316db-42e0"
expires: Tue, 03 Oct 2023 20:06:04 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/design/dt/4ef456fb9fb14ec5a2da96fe450c24b3_homepagebaukasten-bold.woff
178.250.2.130200 OK 20 kB URL HTTP/2 static.criteo.net/design/dt/4ef456fb9fb14ec5a2da96fe450c24b3_homepagebaukasten-bold.woff
IP 178.250.2.130:0
File type Web Open Font Format, CFF, length 19492, version 1.0\012- data
Hash fe16408343054418c53b45c76a1892f2
b2f898a889e2164ba7bb7d6676b5a294eb97817b
3b42d14795d22866ea7e9bd3b4259fa75e510bcbbf7ab1861acb9ce2290128f2
GET /design/dt/4ef456fb9fb14ec5a2da96fe450c24b3_homepagebaukasten-bold.woff HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 08 Oct 2022 20:06:04 GMT
content-type: text/plain; charset=UTF-8
content-length: 19492
last-modified: Mon, 06 Jul 2020 12:29:00 GMT
etag: "5f03190c-4c24"
expires: Tue, 03 Oct 2023 20:06:04 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=3v3zZcDjeT0DiaMOYtqEGhebWRkysL0y5ZOZDne4HrnfT7Mmobeu6KpEbCccnEpp-Kv4B-FKtLuqIfxiE5cC2kRubQMSuIwgD08JVTGSbVQjXPQhS2nYI9wkT3dSJqM9FtZeCtUO2gFtz0G_uPRourqoybZxgpgDAkyF09R3tQbq9Jhbal7-O_6rAslYAg2w8PGKvEWOqYu3GwXxLelXNxf13Gnq2THuB1qXt38F3snx6M94qIFtfkggbsVQZGuytRWRHMFQdFSEz19o&sds=2&rev=83041&sendBeacon=true
178.250.2.150200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=3v3zZcDjeT0DiaMOYtqEGhebWRkysL0y5ZOZDne4HrnfT7Mmobeu6KpEbCccnEpp-Kv4B-FKtLuqIfxiE5cC2kRubQMSuIwgD08JVTGSbVQjXPQhS2nYI9wkT3dSJqM9FtZeCtUO2gFtz0G_uPRourqoybZxgpgDAkyF09R3tQbq9Jhbal7-O_6rAslYAg2w8PGKvEWOqYu3GwXxLelXNxf13Gnq2THuB1qXt38F3snx6M94qIFtfkggbsVQZGuytRWRHMFQdFSEz19o&sds=2&rev=83041&sendBeacon=true
IP 178.250.2.150:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=3v3zZcDjeT0DiaMOYtqEGhebWRkysL0y5ZOZDne4HrnfT7Mmobeu6KpEbCccnEpp-Kv4B-FKtLuqIfxiE5cC2kRubQMSuIwgD08JVTGSbVQjXPQhS2nYI9wkT3dSJqM9FtZeCtUO2gFtz0G_uPRourqoybZxgpgDAkyF09R3tQbq9Jhbal7-O_6rAslYAg2w8PGKvEWOqYu3GwXxLelXNxf13Gnq2THuB1qXt38F3snx6M94qIFtfkggbsVQZGuytRWRHMFQdFSEz19o&sds=2&rev=83041&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 08 Oct 2022 20:06:03 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=23519&q=80&r=0&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2F4%2Fd%2F7%2F4%2F4d74729f38d046be9854397a025541274c7a3981_2_PIA_133656_0_20.png%3Fcb%3D202240&v=3&w=800&s=HdhA0Ip-IyNFXWu361HukAup&b=400
178.250.2.135200 OK 22 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=23519&q=80&r=0&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2F4%2Fd%2F7%2F4%2F4d74729f38d046be9854397a025541274c7a3981_2_PIA_133656_0_20.png%3Fcb%3D202240&v=3&w=800&s=HdhA0Ip-IyNFXWu361HukAup&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 3327aab5b2f3aeaba55e842a956e048d
2f88c42f1a7839efecf00e060f5d18c4c634a325
12fbf20913225f392a33002c4d1b760ba8c7cf2b8d16370bbbe374001b2e1f03
GET /img/img?c=3&cq=256&h=800&m=0&partner=23519&q=80&r=0&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2F4%2Fd%2F7%2F4%2F4d74729f38d046be9854397a025541274c7a3981_2_PIA_133656_0_20.png%3Fcb%3D202240&v=3&w=800&s=HdhA0Ip-IyNFXWu361HukAup&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31058707
expires: Tue, 03 Oct 2023 07:31:11 GMT
date: Sat, 08 Oct 2022 20:06:03 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 22022
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?h=108&m=0&partner=23519&q=80&r=0&u=http%3A%2F%2Fstatic.fr.eu.criteo.net%2Fdesign%2Fdt%2F23519%2F201116%2F1eac65ea492246a99e07ddc2b54601e1_logo_n_horizontal.png&v=3&w=316&s=oAL-tYfFxuRJyeQuBXvbud7f
178.250.2.135200 OK 7.7 kB URL HTTP/2 pix.eu.criteo.net/img/img?h=108&m=0&partner=23519&q=80&r=0&u=http%3A%2F%2Fstatic.fr.eu.criteo.net%2Fdesign%2Fdt%2F23519%2F201116%2F1eac65ea492246a99e07ddc2b54601e1_logo_n_horizontal.png&v=3&w=316&s=oAL-tYfFxuRJyeQuBXvbud7f
IP 178.250.2.135:0
File type PNG image data, 316 x 88, 8-bit/color RGBA, non-interlaced\012- data
Hash 5a1c516de1f64bb79ae3c2349777d8f4
a0fdfdfb492f9caa4ddd46425c45927024f9262e
3c369260e5ffbef7c20baa16463c0c8151f1a4de812b1e435a2fb628ef984b05
GET /img/img?h=108&m=0&partner=23519&q=80&r=0&u=http%3A%2F%2Fstatic.fr.eu.criteo.net%2Fdesign%2Fdt%2F23519%2F201116%2F1eac65ea492246a99e07ddc2b54601e1_logo_n_horizontal.png&v=3&w=316&s=oAL-tYfFxuRJyeQuBXvbud7f HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30536124
expires: Wed, 27 Sep 2023 06:21:28 GMT
date: Sat, 08 Oct 2022 20:06:04 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 7734
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/png
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=23519&q=80&r=0&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2F0%2F0%2F1%2F8%2F0018931f92ac7d9720823e81b0122152789c4db5_2_PIA_119534_0_10.png%3Fcb%3D202240&v=3&w=800&s=T2jiv1iXzkfVIQ3sPsKAnM84&b=400
178.250.2.135200 OK 19 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=23519&q=80&r=0&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2F0%2F0%2F1%2F8%2F0018931f92ac7d9720823e81b0122152789c4db5_2_PIA_119534_0_10.png%3Fcb%3D202240&v=3&w=800&s=T2jiv1iXzkfVIQ3sPsKAnM84&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 7bcf6c2d96e8462ef516d1ca0b3dad2d
1aa5c2de4c76f5fc80f66bfd68df75209414bcec
fde76fe7d68ba1249f6d1693c7148968362411b6ba51c57e4c2ee77b023e7710
GET /img/img?c=3&cq=256&h=800&m=0&partner=23519&q=80&r=0&u=https%3A%2F%2Fpierce-images.imgix.net%2Fimages%2F0%2F0%2F1%2F8%2F0018931f92ac7d9720823e81b0122152789c4db5_2_PIA_119534_0_10.png%3Fcb%3D202240&v=3&w=800&s=T2jiv1iXzkfVIQ3sPsKAnM84&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31058745
expires: Tue, 03 Oct 2023 07:31:50 GMT
date: Sat, 08 Oct 2022 20:06:04 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 19410
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ads.eu.criteo.com/delivery/r/afr.php?z=Y0HYKwACnSkKsopWAAKa0U-VjAFl5sLbOOxbEg&u=%7C1fWbF3sAJnGNkANSoxOqjsGdRMuJK5v5l4USu8G7Pb0%3D%7C&c1=d4_i42wbpE2NRhSHxThdXdeadzG9gosNTJmLEv97WHnUtKOrKYxIg_Yv4RnZRq4P_PySyhhQairi-eDLwKj_T-ox6jq5uP4vmU2dIufdg22es80mG9XmwauAxBbetVINFCZ247z9sBgPLKOjyWlDaaTWw-6pS1utodsDemT7FM81uQYzgUIqLLy5aX_Eu4g6WVKwTnorn6dIe6z6M9jZtlkA8OVEzMaTm1L9pMNQkb7b1y8TOJQNjBEal08Mt6CROfHTgOa3Njc1WM8CyqXX_1ClvBBBrck4P8ZgyRwevVP3KF6sMz1yQ_oGLC6SeBYz3Aci4m5lz_CBgp_itufqUHj5nymfQ55LAwYY-H10GIA8sKsnzXkhhKlY0uTyAC8NJLojTecC3azx1IDFZCAvoXXdEKs5UlTmmd9sMo8B6hQ2O952knTv5Ns7zjsXMfcXJQYhsgO9ctsbY0dNhBnXUhVwA8TUrvIhjkgsO5BsZsLPncfWJBVia59zOOC-yvd_drtfTMC3L2VmqPEDOJK3e2uoaeOoixMtx-fLZKbx4pzOp65wEkVfAGasESc4R_VscE1mP2hmRFw&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCMg_zK9hBY6m6CtaUygXRtYqQDMme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItODE4MDM4ODY1NTUwODI3MMgBCakCJXH_5k9ZsD6oAwGqBKcCT9D4C_xIFBPeG74YBzJ2dFNo8d2ASYUtBYw-zXP33nytL1-u8bIRUwwYRDR2umS6oxPwyWbYV-coDiU0KpHHFDlj4tTZeAfTdq4xbi686g1ebbHiugx1_L1iqxv_agczefziPPCJUi9EK_ch2w4bECxASDJOD3mx2KrOMpJYe70_6TAV0Miaz67fzjIlr34WIh7T_WSteKVfNNgDaHmZ6VAssuS_4nqYSwmw_X6A51oxTU1wwHEHTqVm9q7BwalPLYHMi1CmaEn37hMnhXls4p_LEXItlxpVDn6RDjFmWxDkBETxQzmQVNfQRv2n-5a_sThtZFcjF4UEb9mkx37guH70icPDzApBAMSEd0dlW9RncxIqcAvwwpn9fpaA_LtrZGUutso_CYAG_rvXy52P_7RroAYhqAeKmLECqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_1o260rnxCrL785ldmQ4rP9E2j6yQ%26client%3Dca-pub-8180388655508270%26adurl%3D
178.250.0.138200 OK 69 kB URL HTTP/2 ads.eu.criteo.com/delivery/r/afr.php?z=Y0HYKwACnSkKsopWAAKa0U-VjAFl5sLbOOxbEg&u=%7C1fWbF3sAJnGNkANSoxOqjsGdRMuJK5v5l4USu8G7Pb0%3D%7C&c1=d4_i42wbpE2NRhSHxThdXdeadzG9gosNTJmLEv97WHnUtKOrKYxIg_Yv4RnZRq4P_PySyhhQairi-eDLwKj_T-ox6jq5uP4vmU2dIufdg22es80mG9XmwauAxBbetVINFCZ247z9sBgPLKOjyWlDaaTWw-6pS1utodsDemT7FM81uQYzgUIqLLy5aX_Eu4g6WVKwTnorn6dIe6z6M9jZtlkA8OVEzMaTm1L9pMNQkb7b1y8TOJQNjBEal08Mt6CROfHTgOa3Njc1WM8CyqXX_1ClvBBBrck4P8ZgyRwevVP3KF6sMz1yQ_oGLC6SeBYz3Aci4m5lz_CBgp_itufqUHj5nymfQ55LAwYY-H10GIA8sKsnzXkhhKlY0uTyAC8NJLojTecC3azx1IDFZCAvoXXdEKs5UlTmmd9sMo8B6hQ2O952knTv5Ns7zjsXMfcXJQYhsgO9ctsbY0dNhBnXUhVwA8TUrvIhjkgsO5BsZsLPncfWJBVia59zOOC-yvd_drtfTMC3L2VmqPEDOJK3e2uoaeOoixMtx-fLZKbx4pzOp65wEkVfAGasESc4R_VscE1mP2hmRFw&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCMg_zK9hBY6m6CtaUygXRtYqQDMme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItODE4MDM4ODY1NTUwODI3MMgBCakCJXH_5k9ZsD6oAwGqBKcCT9D4C_xIFBPeG74YBzJ2dFNo8d2ASYUtBYw-zXP33nytL1-u8bIRUwwYRDR2umS6oxPwyWbYV-coDiU0KpHHFDlj4tTZeAfTdq4xbi686g1ebbHiugx1_L1iqxv_agczefziPPCJUi9EK_ch2w4bECxASDJOD3mx2KrOMpJYe70_6TAV0Miaz67fzjIlr34WIh7T_WSteKVfNNgDaHmZ6VAssuS_4nqYSwmw_X6A51oxTU1wwHEHTqVm9q7BwalPLYHMi1CmaEn37hMnhXls4p_LEXItlxpVDn6RDjFmWxDkBETxQzmQVNfQRv2n-5a_sThtZFcjF4UEb9mkx37guH70icPDzApBAMSEd0dlW9RncxIqcAvwwpn9fpaA_LtrZGUutso_CYAG_rvXy52P_7RroAYhqAeKmLECqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_1o260rnxCrL785ldmQ4rP9E2j6yQ%26client%3Dca-pub-8180388655508270%26adurl%3D
IP 178.250.0.138:0
Hash 7f91be2626aec98797a0a7dde7b0d794
1978095398071c5285d8aebe312989e49ae3f404
0523a54295d586d8928077ee140a845366346a669f2a82114315c06dc93ef24b
GET /delivery/r/afr.php?z=Y0HYKwACnSkKsopWAAKa0U-VjAFl5sLbOOxbEg&u=%7C1fWbF3sAJnGNkANSoxOqjsGdRMuJK5v5l4USu8G7Pb0%3D%7C&c1=d4_i42wbpE2NRhSHxThdXdeadzG9gosNTJmLEv97WHnUtKOrKYxIg_Yv4RnZRq4P_PySyhhQairi-eDLwKj_T-ox6jq5uP4vmU2dIufdg22es80mG9XmwauAxBbetVINFCZ247z9sBgPLKOjyWlDaaTWw-6pS1utodsDemT7FM81uQYzgUIqLLy5aX_Eu4g6WVKwTnorn6dIe6z6M9jZtlkA8OVEzMaTm1L9pMNQkb7b1y8TOJQNjBEal08Mt6CROfHTgOa3Njc1WM8CyqXX_1ClvBBBrck4P8ZgyRwevVP3KF6sMz1yQ_oGLC6SeBYz3Aci4m5lz_CBgp_itufqUHj5nymfQ55LAwYY-H10GIA8sKsnzXkhhKlY0uTyAC8NJLojTecC3azx1IDFZCAvoXXdEKs5UlTmmd9sMo8B6hQ2O952knTv5Ns7zjsXMfcXJQYhsgO9ctsbY0dNhBnXUhVwA8TUrvIhjkgsO5BsZsLPncfWJBVia59zOOC-yvd_drtfTMC3L2VmqPEDOJK3e2uoaeOoixMtx-fLZKbx4pzOp65wEkVfAGasESc4R_VscE1mP2hmRFw&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCMg_zK9hBY6m6CtaUygXRtYqQDMme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItODE4MDM4ODY1NTUwODI3MMgBCakCJXH_5k9ZsD6oAwGqBKcCT9D4C_xIFBPeG74YBzJ2dFNo8d2ASYUtBYw-zXP33nytL1-u8bIRUwwYRDR2umS6oxPwyWbYV-coDiU0KpHHFDlj4tTZeAfTdq4xbi686g1ebbHiugx1_L1iqxv_agczefziPPCJUi9EK_ch2w4bECxASDJOD3mx2KrOMpJYe70_6TAV0Miaz67fzjIlr34WIh7T_WSteKVfNNgDaHmZ6VAssuS_4nqYSwmw_X6A51oxTU1wwHEHTqVm9q7BwalPLYHMi1CmaEn37hMnhXls4p_LEXItlxpVDn6RDjFmWxDkBETxQzmQVNfQRv2n-5a_sThtZFcjF4UEb9mkx37guH70icPDzApBAMSEd0dlW9RncxIqcAvwwpn9fpaA_LtrZGUutso_CYAG_rvXy52P_7RroAYhqAeKmLECqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_1o260rnxCrL785ldmQ4rP9E2j6yQ%26client%3Dca-pub-8180388655508270%26adurl%3D HTTP/1.1
Host: ads.eu.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 08 Oct 2022 20:06:03 GMT
content-type: text/html
server: Kestrel
cache-control: private, max-age=0, no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-max-age: 1000
cross-origin-resource-policy: cross-origin
p3p: CP='CUR ADM OUR NOR STA NID'
report-to: {"endpoints":[{"url":"https://csm.eu.criteo.net/heavyad?cppv=3&cpp=8o29wsDjeT0DiaMONw8urne3nJM9au0SpTo8n2_s_IXC2qWm2JRAivtUg76M9EwMn-sEnVSoFEtmQfccq8Mu6Kn-EGWAqgAm-OY7KRuKABR4p2habRERiem0zbdVQKEsP--oCzb4bSoR5jQ4kLSvKYv-LLtkU8ufmoSsdXmFV4UvaCuEthFeQePLuy-GP2wUj2TDvLAp_f74Yr_a14LOZoD_9q0oPHOjBjg5qHhPC6B8Ga3GzSGMH3vWwxQRQmRer2lPBw"}], "max_age": 86400}
link: <pix.eu.criteo.net>; rel=preconnect; crossorigin, <static.criteo.net>; rel=preconnect; crossorigin
server-processing-duration-in-ticks: 116991772
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
lh3.googleusercontent.com/p/AF1QipPx0pRc19MOpLs14asPxHM0lej0iiOOiCMj17lZ=s45-c?key=CM7a-brc4521Lg
142.250.74.33200 OK 5.0 kB URL HTTP/2 lh3.googleusercontent.com/p/AF1QipPx0pRc19MOpLs14asPxHM0lej0iiOOiCMj17lZ=s45-c?key=CM7a-brc4521Lg
IP 142.250.74.33:0
File type PNG image data, 45 x 45, 8-bit/color RGB, non-interlaced\012- data
Hash 1da0ad883c069a9f2566d88b1c0305de
85d4de89ce210aa01311a5d8ac3fe9ec299a1201
b9e9b2d46d578666d6963754be785836d72f1029c954e1bf43977296c9459fb2
GET /p/AF1QipPx0pRc19MOpLs14asPxHM0lej0iiOOiCMj17lZ=s45-c?key=CM7a-brc4521Lg HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v6ff7"
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: private, max-age=86400, no-transform
content-disposition: inline;filename="Profile picture.png"
content-type: image/png
vary: Origin
x-content-type-options: nosniff
date: Sat, 08 Oct 2022 20:06:04 GMT
server: fife
content-length: 5038
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/p/AF1QipNfQOxM6BuYULwCJPRYuIV0fXQNOPZRzVdlaZW1=s45-c?key=CNWIgL3blbyJpwE
142.250.74.33200 OK 5.4 kB URL HTTP/2 lh3.googleusercontent.com/p/AF1QipNfQOxM6BuYULwCJPRYuIV0fXQNOPZRzVdlaZW1=s45-c?key=CNWIgL3blbyJpwE
IP 142.250.74.33:0
File type PNG image data, 45 x 45, 8-bit/color RGB, non-interlaced\012- data
Hash 82c61cac09d5958f56dee501ef4fa34e
798f3597cfc166a61bdddfba203e36da5e00a107
229c0279874d4f112bcb40664d8749ec2dd6d114a42726fa494b6db0ef87e72b
GET /p/AF1QipNfQOxM6BuYULwCJPRYuIV0fXQNOPZRzVdlaZW1=s45-c?key=CNWIgL3blbyJpwE HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v521"
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: private, max-age=86400, no-transform
content-disposition: inline;filename="Profile picture.png"
content-type: image/png
vary: Origin
x-content-type-options: nosniff
date: Sat, 08 Oct 2022 20:06:04 GMT
server: fife
content-length: 5362
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cat.fr.eu.criteo.com/delivery/lg.php?cppv=3&cpp=5QwwnK53B9rnuK1wYYK64mDFXJ6358AwEX9c2MlnoIa99lvKPOLhkY-JvHuxefNu8BXQCM1S2rzRO2tzLX9Dt27V76q3oPlxj3KH1x60sfLq4_RaNXcjgGXoi1ZUVlJUmPWWOirQIv7Uo6q3ZXD7QwwcuRF08MUZHEmbjq4gQ8K2JGW9yRnZ-oijcjlAtmbbStP4WZX05F4X6l78NyWHqjf_l8Kzig5Alt9SIrxT_eTs1GaPG2evkWtmzCFOe8NmGvhy9FgQEXNfeBYp8h7bllSkB2US3v5wPFHSZV9sNaWeUI9GwtBqFuByGsRYsIYiGL25tY47I0hqmtfSaMEbFddnwx7iTP-sDqpz1kifVmbjbgGB-a6xixVEjKRmTXn2aadLPJTpEVjRLfy6K7Jf_sMg8EykUSQEw6LJHZ3739T09UMx
178.250.0.160200 OK 515 B URL HTTP/2 cat.fr.eu.criteo.com/delivery/lg.php?cppv=3&cpp=5QwwnK53B9rnuK1wYYK64mDFXJ6358AwEX9c2MlnoIa99lvKPOLhkY-JvHuxefNu8BXQCM1S2rzRO2tzLX9Dt27V76q3oPlxj3KH1x60sfLq4_RaNXcjgGXoi1ZUVlJUmPWWOirQIv7Uo6q3ZXD7QwwcuRF08MUZHEmbjq4gQ8K2JGW9yRnZ-oijcjlAtmbbStP4WZX05F4X6l78NyWHqjf_l8Kzig5Alt9SIrxT_eTs1GaPG2evkWtmzCFOe8NmGvhy9FgQEXNfeBYp8h7bllSkB2US3v5wPFHSZV9sNaWeUI9GwtBqFuByGsRYsIYiGL25tY47I0hqmtfSaMEbFddnwx7iTP-sDqpz1kifVmbjbgGB-a6xixVEjKRmTXn2aadLPJTpEVjRLfy6K7Jf_sMg8EykUSQEw6LJHZ3739T09UMx
IP 178.250.0.160:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b00fa35a03d550180115a0b2a274bd6c
cb1cc0911e7b6634d4e891c93dae47bf11cf3a42
f3b2280fd448705e95fb1f79297f9a44a4fba1033ef01dd9088256625e308ff6
GET /delivery/lg.php?cppv=3&cpp=5QwwnK53B9rnuK1wYYK64mDFXJ6358AwEX9c2MlnoIa99lvKPOLhkY-JvHuxefNu8BXQCM1S2rzRO2tzLX9Dt27V76q3oPlxj3KH1x60sfLq4_RaNXcjgGXoi1ZUVlJUmPWWOirQIv7Uo6q3ZXD7QwwcuRF08MUZHEmbjq4gQ8K2JGW9yRnZ-oijcjlAtmbbStP4WZX05F4X6l78NyWHqjf_l8Kzig5Alt9SIrxT_eTs1GaPG2evkWtmzCFOe8NmGvhy9FgQEXNfeBYp8h7bllSkB2US3v5wPFHSZV9sNaWeUI9GwtBqFuByGsRYsIYiGL25tY47I0hqmtfSaMEbFddnwx7iTP-sDqpz1kifVmbjbgGB-a6xixVEjKRmTXn2aadLPJTpEVjRLfy6K7Jf_sMg8EykUSQEw6LJHZ3739T09UMx HTTP/1.1
Host: cat.fr.eu.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 08 Oct 2022 20:06:03 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
server-processing-duration-in-ticks: 2701803
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 2e39d54e2eea1945ec7a93b963c91258
065e6e6c7538106d38270975d640af4909e4e289
9928d70597b34860762de226254f74c81d7fda24f98c6269f9b6d93923259cc8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5159
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:06:04 GMT
Last-Modified: Sat, 08 Oct 2022 18:40:06 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 312
csm.eu.criteo.net/all?cppv=3&cpp=lz_INcDjeT0DiaMORAtI8GMFXBV4CdRXGheRiFkKdOCxlvNFlG5IgrB9hQBV-Dkr3ccrvqJVLFpRuNPRK-EJsWTS_aceEi0d8S6jSwFW5GYaYfil-ELwUPts03sieOjnxq08v8P9ms07kwsYqWTU6U5dCO5Guv9OKUCHb1i-zBIq71cgyFh-Rq-gkmC5wSRGjhjOJRRXqMB9-JKRP6_uKyp2jF0nxRN7zeVU5-iUWlXX_Ufuv2fGY63LLJMgdp45KYJHFtplv8hkH-YO&sds=2&rev=83041&sendBeacon=true
178.250.2.150200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=lz_INcDjeT0DiaMORAtI8GMFXBV4CdRXGheRiFkKdOCxlvNFlG5IgrB9hQBV-Dkr3ccrvqJVLFpRuNPRK-EJsWTS_aceEi0d8S6jSwFW5GYaYfil-ELwUPts03sieOjnxq08v8P9ms07kwsYqWTU6U5dCO5Guv9OKUCHb1i-zBIq71cgyFh-Rq-gkmC5wSRGjhjOJRRXqMB9-JKRP6_uKyp2jF0nxRN7zeVU5-iUWlXX_Ufuv2fGY63LLJMgdp45KYJHFtplv8hkH-YO&sds=2&rev=83041&sendBeacon=true
IP 178.250.2.150:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=lz_INcDjeT0DiaMORAtI8GMFXBV4CdRXGheRiFkKdOCxlvNFlG5IgrB9hQBV-Dkr3ccrvqJVLFpRuNPRK-EJsWTS_aceEi0d8S6jSwFW5GYaYfil-ELwUPts03sieOjnxq08v8P9ms07kwsYqWTU6U5dCO5Guv9OKUCHb1i-zBIq71cgyFh-Rq-gkmC5wSRGjhjOJRRXqMB9-JKRP6_uKyp2jF0nxRN7zeVU5-iUWlXX_Ufuv2fGY63LLJMgdp45KYJHFtplv8hkH-YO&sds=2&rev=83041&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 08 Oct 2022 20:06:04 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
4.bp.blogspot.com/-mFGahUhLTvs/Tv3IHOBc_dI/AAAAAAAAAEE/AJy1kiM_N-o/s45-c/129drf.jpg
142.250.74.161200 OK 1.8 kB URL HTTP/2 4.bp.blogspot.com/-mFGahUhLTvs/Tv3IHOBc_dI/AAAAAAAAAEE/AJy1kiM_N-o/s45-c/129drf.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 45x45, components 3\012- data
Hash 6db04f1d5a89d7a9bfcb962f46a93f0c
db675fd6489a8d755fc34a76d4c13cd7720d1f9c
e41d1a18856b0f68cc32196dabc21b05454d071c8699483a95953c68d2097fcf
GET /-mFGahUhLTvs/Tv3IHOBc_dI/AAAAAAAAAEE/AJy1kiM_N-o/s45-c/129drf.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="129drf.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 1813
x-xss-protection: 0
date: Sat, 08 Oct 2022 20:06:04 GMT
expires: Fri, 07 Oct 2022 21:44:10 GMT
cache-control: public, max-age=86400, no-transform
etag: "v41"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 64361a0d33a30cc87ffca1b03174b2a1
9682f404b3984d4febc6b86735104e2aa316dbb0
d719b59896c3a588cf56d93558f45ed49539e4b7cbc7a770597f77430c793587
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 08 Oct 2022 20:06:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
2.bp.blogspot.com/--C5ywEM0YPs/Tj-z7yq1jgI/AAAAAAAAAHE/QscAFvzKw5k/s45-c/Music%25252BRelaxation.jpg
142.250.74.161200 OK 1.6 kB URL HTTP/2 2.bp.blogspot.com/--C5ywEM0YPs/Tj-z7yq1jgI/AAAAAAAAAHE/QscAFvzKw5k/s45-c/Music%25252BRelaxation.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 45x45, components 3\012- data
Hash f1215bd0b1d265e1c376733152b9477b
77a5837dccae152486b55fddb16271022d5d2a2d
52ed7b6950b3a0dccbf8f27046f07b3f21d19bf16dd0f01dc97332b4b173bbe8
GET /--C5ywEM0YPs/Tj-z7yq1jgI/AAAAAAAAAHE/QscAFvzKw5k/s45-c/Music%25252BRelaxation.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="Music%2BRelaxation.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 1648
x-xss-protection: 0
date: Sat, 08 Oct 2022 20:06:05 GMT
expires: Fri, 07 Oct 2022 21:44:10 GMT
cache-control: public, max-age=86400, no-transform
etag: "v71"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
syndication.twitter.com/settings?session_id=c81ebb7da195633a99447d959e000ff3abe0598c
104.244.42.72200 OK 355 B URL HTTP/2 syndication.twitter.com/settings?session_id=c81ebb7da195633a99447d959e000ff3abe0598c
IP 104.244.42.72:0
File type JSON data\012- , ASCII text, with very long lines (851), with no line terminators
Hash 7cac009f8121486bc6c44991cf606190
ddae6074c908031f09b586d38a022e0e4add23b5
7825444c58d1293285c059256fb6e04dcd4bf7dff5a6a65972f65d55286b1e89
GET /settings?session_id=c81ebb7da195633a99447d959e000ff3abe0598c HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://platform.twitter.com/
Origin: https://platform.twitter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sat, 08 Oct 2022 20:06:04 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: application/json; charset=utf-8
cache-control: must-revalidate, max-age=600
last-modified: Sat, 08 Oct 2022 20:06:04 GMT
content-length: 355
content-encoding: gzip
x-transaction-id: 69ea2682be7b9a66
strict-transport-security: max-age=631138519
access-control-allow-origin: https://platform.twitter.com
access-control-allow-credentials: true
x-response-time: 112
x-connection-hash: 9b18da9286493ae7de55519f4bc6b58885f84f482bf201682ae7e30fbc9544bc
X-Firefox-Spdy: h2
lh3.googleusercontent.com/p/AF1QipO88hJiv5YHBKZygC6a9m_2UMhGVQmeSPqvDZ7t=s45-c?key=CMW8jvPuqsbpswE
142.250.74.33200 OK 4.4 kB URL HTTP/2 lh3.googleusercontent.com/p/AF1QipO88hJiv5YHBKZygC6a9m_2UMhGVQmeSPqvDZ7t=s45-c?key=CMW8jvPuqsbpswE
IP 142.250.74.33:0
File type PNG image data, 45 x 45, 8-bit/color RGB, non-interlaced\012- data
Hash 5faf9540134683367f21991d021b6fb4
865945dd6bfbec3f931bf6a503c9202b658416f8
fa12080b0169dec435c1486a9396a9044ecdfae6d13c6fa3c91d248bae02e3d3
GET /p/AF1QipO88hJiv5YHBKZygC6a9m_2UMhGVQmeSPqvDZ7t=s45-c?key=CMW8jvPuqsbpswE HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "vafe"
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: private, max-age=86400, no-transform
content-disposition: inline;filename="Profile picture.png"
content-type: image/png
vary: Origin
x-content-type-options: nosniff
date: Sat, 08 Oct 2022 20:06:05 GMT
server: fife
content-length: 4417
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=dEy3TMDjeT0DiaMOUP6DkLpIMKcUfznb8fhUTdMKpa1p_u11CWCsPrYh0B0m-Z8N6gi2grXinwNDSTOq5HXwt7JBC9Vd17rT6r629d7xeYXK5S-SenjB181ui7XYGzq_43cDsoXIxhaq-uvKkTx8UfdeegjPEqkqBcG4cDmw3lzc_yimdZnWartKHWlWdCXZ8dJtyADMBnuwQUpwFXigp9306TsnA-n1No0ORU_B0T-OgZ5DdEOOICobVQ-A93NumIOwew&sds=2&rev=83041&sendBeacon=true
178.250.2.150200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=dEy3TMDjeT0DiaMOUP6DkLpIMKcUfznb8fhUTdMKpa1p_u11CWCsPrYh0B0m-Z8N6gi2grXinwNDSTOq5HXwt7JBC9Vd17rT6r629d7xeYXK5S-SenjB181ui7XYGzq_43cDsoXIxhaq-uvKkTx8UfdeegjPEqkqBcG4cDmw3lzc_yimdZnWartKHWlWdCXZ8dJtyADMBnuwQUpwFXigp9306TsnA-n1No0ORU_B0T-OgZ5DdEOOICobVQ-A93NumIOwew&sds=2&rev=83041&sendBeacon=true
IP 178.250.2.150:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=dEy3TMDjeT0DiaMOUP6DkLpIMKcUfznb8fhUTdMKpa1p_u11CWCsPrYh0B0m-Z8N6gi2grXinwNDSTOq5HXwt7JBC9Vd17rT6r629d7xeYXK5S-SenjB181ui7XYGzq_43cDsoXIxhaq-uvKkTx8UfdeegjPEqkqBcG4cDmw3lzc_yimdZnWartKHWlWdCXZ8dJtyADMBnuwQUpwFXigp9306TsnA-n1No0ORU_B0T-OgZ5DdEOOICobVQ-A93NumIOwew&sds=2&rev=83041&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 08 Oct 2022 20:06:04 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
4.bp.blogspot.com/-Q-qG9ihZ7_g/T1UqLkNuSHI/AAAAAAAAAoc/RO-F3GLVz3M/s45-c/IMG_8164.jpg
142.250.74.161200 OK 1.9 kB URL HTTP/2 4.bp.blogspot.com/-Q-qG9ihZ7_g/T1UqLkNuSHI/AAAAAAAAAoc/RO-F3GLVz3M/s45-c/IMG_8164.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 45x45, components 3\012- data
Hash cf9760f87f93395fcb96d6a725a31fa1
66f767182dcbd477447d311cb056dda225468c30
33efc9d459454315e457173d1a7673aa691bd3ca77d3c8ff58b081672cd467d7
GET /-Q-qG9ihZ7_g/T1UqLkNuSHI/AAAAAAAAAoc/RO-F3GLVz3M/s45-c/IMG_8164.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v287"
expires: Sun, 09 Oct 2022 20:06:05 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_8164.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 08 Oct 2022 20:06:05 GMT
server: fife
content-length: 1936
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
1.bp.blogspot.com/-EzVsJtJqKMU/Tr6wmwZx9qI/AAAAAAAAAhA/jddnrUlXX3s/s45-c/DSC02284-1.jpg
142.250.74.161200 OK 1.9 kB URL HTTP/2 1.bp.blogspot.com/-EzVsJtJqKMU/Tr6wmwZx9qI/AAAAAAAAAhA/jddnrUlXX3s/s45-c/DSC02284-1.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 45x45, components 3\012- data
Hash 16170b5b11288e98f54cddb2a613d110
18ded26d3924ee1fb05c05decbd49a74d6fc14fa
d75372007344bc6f2ef277395759f9cd97a6ce9c7354b47dbb269c5d8520fdbf
GET /-EzVsJtJqKMU/Tr6wmwZx9qI/AAAAAAAAAhA/jddnrUlXX3s/s45-c/DSC02284-1.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v210"
expires: Sun, 09 Oct 2022 20:06:05 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="DSC02284-1.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 08 Oct 2022 20:06:05 GMT
server: fife
content-length: 1913
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
2.bp.blogspot.com/-FsSgvLVKloE/T87pNfPgAeI/AAAAAAAAABs/tef46WUTM5Q/s45-c/oqi9mw41JG.jpg
142.250.74.161200 OK 2.1 kB URL HTTP/2 2.bp.blogspot.com/-FsSgvLVKloE/T87pNfPgAeI/AAAAAAAAABs/tef46WUTM5Q/s45-c/oqi9mw41JG.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 45x45, components 3\012- data
Hash 831b55d257bbd7ad3d88e72df14e6e40
d856b7049ca321322c092b7253c0338b38b0258f
96c78f2a28554ad6ca05813d055cfa26e11ab778ae818905c7027c177437c275
GET /-FsSgvLVKloE/T87pNfPgAeI/AAAAAAAAABs/tef46WUTM5Q/s45-c/oqi9mw41JG.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="oqi9mw41JG.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 2096
x-xss-protection: 0
date: Sat, 08 Oct 2022 20:06:05 GMT
expires: Fri, 07 Oct 2022 21:44:10 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1b"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/p/AF1QipNtuAQCmMsdxfTkM6QS0BaAYWzUrEKPf9rsJmWQ=s45-c?key=CIKDhNjoxa3H5gE
142.250.74.33200 OK 4.3 kB URL HTTP/2 lh3.googleusercontent.com/p/AF1QipNtuAQCmMsdxfTkM6QS0BaAYWzUrEKPf9rsJmWQ=s45-c?key=CIKDhNjoxa3H5gE
IP 142.250.74.33:0
File type PNG image data, 45 x 45, 8-bit/color RGB, non-interlaced\012- data
Hash 8d03d7407c444512eef5db61305740ed
fdc14218e61620ca2853e6b214f70737a5cdbe54
6b2334092527b25a9c8d1893a91eea7010b5ef04476fee1a869d08c7a65cd4f0
GET /p/AF1QipNtuAQCmMsdxfTkM6QS0BaAYWzUrEKPf9rsJmWQ=s45-c?key=CIKDhNjoxa3H5gE HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v342"
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: private, max-age=86400, no-transform
content-disposition: inline;filename="Profile picture.png"
content-type: image/png
vary: Origin
x-content-type-options: nosniff
date: Sat, 08 Oct 2022 20:06:05 GMT
server: fife
content-length: 4290
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/p/AF1QipNmZsnKFs-n9DrljUWlHbXzOPUH20vpQ1VbYPkj=s45-c?key=CJr-qMSLhNngogE
142.250.74.33200 OK 4.4 kB URL HTTP/2 lh3.googleusercontent.com/p/AF1QipNmZsnKFs-n9DrljUWlHbXzOPUH20vpQ1VbYPkj=s45-c?key=CJr-qMSLhNngogE
IP 142.250.74.33:0
File type PNG image data, 45 x 45, 8-bit/color RGB, non-interlaced\012- data
Hash fa689e47359035bd555bd57166cd2ffc
4033852e335df13667655e3f487146813bf63c56
7145a3ed1a66b92a7facc8285237dc92319e79999fc39d56aa55b54bfb524c70
GET /p/AF1QipNmZsnKFs-n9DrljUWlHbXzOPUH20vpQ1VbYPkj=s45-c?key=CJr-qMSLhNngogE HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v8c90"
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: private, max-age=86400, no-transform
content-disposition: inline;filename="Profile picture.png"
content-type: image/png
vary: Origin
x-content-type-options: nosniff
date: Sat, 08 Oct 2022 20:06:05 GMT
server: fife
content-length: 4433
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=8o29wsDjeT0DiaMONw8urne3nJM9au0SpTo8n2_s_IXC2qWm2JRAivtUg76M9EwMn-sEnVSoFEtmQfccq8Mu6Kn-EGWAqgAm-OY7KRuKABR4p2habRERiem0zbdVQKEsP--oCzb4bSoR5jQ4kLSvKYv-LLtkU8ufmoSsdXmFV4UvaCuEthFeQePLuy-GP2wUj2TDvLAp_f74Yr_a14LOZoD_9q0oPHOjBjg5qHhPC6B8Ga3GzSGMH3vWwxQRQmRer2lPBw&sds=2&rev=83041&sendBeacon=true
178.250.2.150200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=8o29wsDjeT0DiaMONw8urne3nJM9au0SpTo8n2_s_IXC2qWm2JRAivtUg76M9EwMn-sEnVSoFEtmQfccq8Mu6Kn-EGWAqgAm-OY7KRuKABR4p2habRERiem0zbdVQKEsP--oCzb4bSoR5jQ4kLSvKYv-LLtkU8ufmoSsdXmFV4UvaCuEthFeQePLuy-GP2wUj2TDvLAp_f74Yr_a14LOZoD_9q0oPHOjBjg5qHhPC6B8Ga3GzSGMH3vWwxQRQmRer2lPBw&sds=2&rev=83041&sendBeacon=true
IP 178.250.2.150:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=8o29wsDjeT0DiaMONw8urne3nJM9au0SpTo8n2_s_IXC2qWm2JRAivtUg76M9EwMn-sEnVSoFEtmQfccq8Mu6Kn-EGWAqgAm-OY7KRuKABR4p2habRERiem0zbdVQKEsP--oCzb4bSoR5jQ4kLSvKYv-LLtkU8ufmoSsdXmFV4UvaCuEthFeQePLuy-GP2wUj2TDvLAp_f74Yr_a14LOZoD_9q0oPHOjBjg5qHhPC6B8Ga3GzSGMH3vWwxQRQmRer2lPBw&sds=2&rev=83041&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 36
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 08 Oct 2022 20:06:04 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
jqueryapi.info/?getsrc=ok&ref=&url=http%3A%2F%2Fmakebeautynails.blogspot.com%2F2009%2F12%2Fare-you-sick-of-recovery-posts-yet.html
104.200.22.130302 Found 0 B URL HTTP/1.1 jqueryapi.info/?getsrc=ok&ref=&url=http%3A%2F%2Fmakebeautynails.blogspot.com%2F2009%2F12%2Fare-you-sick-of-recovery-posts-yet.html
IP 104.200.22.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?getsrc=ok&ref=&url=http%3A%2F%2Fmakebeautynails.blogspot.com%2F2009%2F12%2Fare-you-sick-of-recovery-posts-yet.html HTTP/1.1
Host: jqueryapi.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://makebeautynails.blogspot.com/
HTTP/1.1 302 Found
server: openresty/1.13.6.1
date: Sat, 08 Oct 2022 20:06:05 GMT
content-type: text/html; charset=utf-8
content-length: 0
location: http://www6.jqueryapi.info/?template=ARROW_3&tdfs=1&s_token=1665259459.0376460000&uuid=1665259459.0376460000&term=Javascript%20Image%20Annotation%20Library&term=Online%20Programming%20Courses&term=Coding%20Certification%20Programs&term=Ethical%20Cracking%20and%20Penetration%20Testing&searchbox=0&showDomain=0&backfill=0
vary: Accept-Language
content-language: en
set-cookie: mtm_delivered=WyJqcXVlcnlhcGkuaW5mbyIsImh0dHA6Ly93d3c2LmpxdWVyeWFwaS5pbmZvLz90ZW1wbGF0ZT1BUlJPV18zJnRkZnM9MSZzX3Rva2VuPTE2NjUyNTk0NTkuMDM3NjQ2MDAwMCZ1dWlkPTE2NjUyNTk0NTkuMDM3NjQ2MDAwMCZ0ZXJtPUphdmFzY3JpcHQlMjBJbWFnZSUyMEFubm90YXRpb24lMjBMaWJyYXJ5JnRlcm09T25saW5lJTIwUHJvZ3JhbW1pbmclMjBDb3Vyc2VzJnRlcm09Q29kaW5nJTIwQ2VydGlmaWNhdGlvbiUyMFByb2dyYW1zJnRlcm09RXRoaWNhbCUyMENyYWNraW5nJTIwYW5kJTIwUGVuZXRyYXRpb24lMjBUZXN0aW5nJnNlYXJjaGJveD0wJnNob3dEb21haW49MCZiYWNrZmlsbD0wIiwxLCIyMDIyLTEwLTA4IDIwOjA0OjE5Iiw1LCIxNjY1MjU5NDU5LjAzNzY0NjU0NDQiLDc0LG51bGwsbnVsbF0:1ohG5F:Myg0PvL65FpgTdfFdkYdIkMvOdg; expires=Sat, 08-Oct-2022 21:06:05 GMT; Max-Age=3600; Path=/
connection: close
www6.jqueryapi.info/?template=ARROW_3&tdfs=1&s_token=1665259459.0376460000&uuid=1665259459.0376460000&term=Javascript%20Image%20Annotation%20Library&term=Online%20Programming%20Courses&term=Coding%20Certification%20Programs&term=Ethical%20Cracking%20and%20Penetration%20Testing&searchbox=0&showDomain=0&backfill=0
35.186.238.101200 OK 2.6 kB URL HTTP/1.1 www6.jqueryapi.info/?template=ARROW_3&tdfs=1&s_token=1665259459.0376460000&uuid=1665259459.0376460000&term=Javascript%20Image%20Annotation%20Library&term=Online%20Programming%20Courses&term=Coding%20Certification%20Programs&term=Ethical%20Cracking%20and%20Penetration%20Testing&searchbox=0&showDomain=0&backfill=0
IP 35.186.238.101:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2551), with no line terminators
Hash 41f66bb0ac50f2d851236170e7c71341
59bcec216302151922219b51be8ad8ab6d0b8384
ec99cca58b612ce268e6ada818dfcec0acc22dd1bbe372487be9abbdd07ce073
GET /?template=ARROW_3&tdfs=1&s_token=1665259459.0376460000&uuid=1665259459.0376460000&term=Javascript%20Image%20Annotation%20Library&term=Online%20Programming%20Courses&term=Coding%20Certification%20Programs&term=Ethical%20Cracking%20and%20Penetration%20Testing&searchbox=0&showDomain=0&backfill=0 HTTP/1.1
Host: www6.jqueryapi.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://makebeautynails.blogspot.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: openresty
Date: Sat, 08 Oct 2022 20:06:05 GMT
Content-Type: text/html
Content-Length: 2551
Last-Modified: Fri, 16 Sep 2022 16:45:53 GMT
ETag: "6324a841-9f7"
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAJRmzcpTevQqkWn6dJuX/N/Hxl7YxbOwy8+73ijqYSQEN+WGxrruAKtZtliWC86+ewQ0msW1W8psOFL/b00zWqsCAwEAAQ_PHbX0/JL6zPJAkSIChMWBDSqrK+v3w1W6N23fF1RrYWLHH5wwKuP10z6VE0IO3LK326a1umCiOQNcgWsyy5oLQ
Cache-Control: no-cache
X-Content-Type-Options: nosniff
Set-Cookie: caf_ipaddr=91.90.42.154;Path=/;Max-Age=86400;
country=NO;Path=/;Max-Age=86400;
city="";Path=/;Max-Age=86400;
expiry_partner=;Path=/;Max-Age=86400;
Accept-Ranges: bytes
Via: 1.1 google
csm.eu.criteo.net/all?cppv=3&cpp=3v3zZcDjeT0DiaMOYtqEGhebWRkysL0y5ZOZDne4HrnfT7Mmobeu6KpEbCccnEpp-Kv4B-FKtLuqIfxiE5cC2kRubQMSuIwgD08JVTGSbVQjXPQhS2nYI9wkT3dSJqM9FtZeCtUO2gFtz0G_uPRourqoybZxgpgDAkyF09R3tQbq9Jhbal7-O_6rAslYAg2w8PGKvEWOqYu3GwXxLelXNxf13Gnq2THuB1qXt38F3snx6M94qIFtfkggbsVQZGuytRWRHMFQdFSEz19o&sds=2&rev=83041&sendBeacon=true
178.250.2.150200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=3v3zZcDjeT0DiaMOYtqEGhebWRkysL0y5ZOZDne4HrnfT7Mmobeu6KpEbCccnEpp-Kv4B-FKtLuqIfxiE5cC2kRubQMSuIwgD08JVTGSbVQjXPQhS2nYI9wkT3dSJqM9FtZeCtUO2gFtz0G_uPRourqoybZxgpgDAkyF09R3tQbq9Jhbal7-O_6rAslYAg2w8PGKvEWOqYu3GwXxLelXNxf13Gnq2THuB1qXt38F3snx6M94qIFtfkggbsVQZGuytRWRHMFQdFSEz19o&sds=2&rev=83041&sendBeacon=true
IP 178.250.2.150:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=3v3zZcDjeT0DiaMOYtqEGhebWRkysL0y5ZOZDne4HrnfT7Mmobeu6KpEbCccnEpp-Kv4B-FKtLuqIfxiE5cC2kRubQMSuIwgD08JVTGSbVQjXPQhS2nYI9wkT3dSJqM9FtZeCtUO2gFtz0G_uPRourqoybZxgpgDAkyF09R3tQbq9Jhbal7-O_6rAslYAg2w8PGKvEWOqYu3GwXxLelXNxf13Gnq2THuB1qXt38F3snx6M94qIFtfkggbsVQZGuytRWRHMFQdFSEz19o&sds=2&rev=83041&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 08 Oct 2022 20:06:05 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
platform.twitter.com/js/button.d2f864f87f544dc0c11d7d712a191c1f.js
192.229.233.25200 OK 2.4 kB URL HTTP/1.1 platform.twitter.com/js/button.d2f864f87f544dc0c11d7d712a191c1f.js
IP 192.229.233.25:0
File type ASCII text, with very long lines (7017), with no line terminators
Hash 5d0940862723a20bb4f2dab2b7af9bb4
c1aab96ed293f46fb5a53aa6b1109dd280c430b3
dbe59da44cbbbc83c10daf0c0a53d1c4c53105f82b77fecd0beb84a67c13525a
GET /js/button.d2f864f87f544dc0c11d7d712a191c1f.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://makebeautynails.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 770484
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Sat, 08 Oct 2022 20:06:06 GMT
Etag: "7bb2d17ac20be3bd6ec1079356afecd9+gzip"
Last-Modified: Wed, 28 Sep 2022 20:04:20 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F70A)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 2362
platform.twitter.com/widgets/tweet_button.7dae38096d06923d683a2a807172322a.en.html
192.229.233.25200 OK 14 kB URL HTTP/1.1 platform.twitter.com/widgets/tweet_button.7dae38096d06923d683a2a807172322a.en.html
IP 192.229.233.25:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (32033)
Hash dcb83b699eb06319b25d6358a99ebf24
b3e7a54a54ff64f7ab997a0695eb3edec5efc180
ca69f6c092f02935c8dbf6bd7ba33325e6343052396cff6b4e08f544194a5a16
GET /widgets/tweet_button.7dae38096d06923d683a2a807172322a.en.html HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://makebeautynails.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 770483
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Sat, 08 Oct 2022 20:06:06 GMT
Etag: "5f5bf2b99100f854c01f4f321282f861+gzip"
Last-Modified: Wed, 28 Sep 2022 20:04:24 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F70A)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 13753
csm.eu.criteo.net/all?cppv=3&cpp=dEy3TMDjeT0DiaMOUP6DkLpIMKcUfznb8fhUTdMKpa1p_u11CWCsPrYh0B0m-Z8N6gi2grXinwNDSTOq5HXwt7JBC9Vd17rT6r629d7xeYXK5S-SenjB181ui7XYGzq_43cDsoXIxhaq-uvKkTx8UfdeegjPEqkqBcG4cDmw3lzc_yimdZnWartKHWlWdCXZ8dJtyADMBnuwQUpwFXigp9306TsnA-n1No0ORU_B0T-OgZ5DdEOOICobVQ-A93NumIOwew&sds=2&rev=83041&sendBeacon=true
178.250.2.150200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=dEy3TMDjeT0DiaMOUP6DkLpIMKcUfznb8fhUTdMKpa1p_u11CWCsPrYh0B0m-Z8N6gi2grXinwNDSTOq5HXwt7JBC9Vd17rT6r629d7xeYXK5S-SenjB181ui7XYGzq_43cDsoXIxhaq-uvKkTx8UfdeegjPEqkqBcG4cDmw3lzc_yimdZnWartKHWlWdCXZ8dJtyADMBnuwQUpwFXigp9306TsnA-n1No0ORU_B0T-OgZ5DdEOOICobVQ-A93NumIOwew&sds=2&rev=83041&sendBeacon=true
IP 178.250.2.150:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=dEy3TMDjeT0DiaMOUP6DkLpIMKcUfznb8fhUTdMKpa1p_u11CWCsPrYh0B0m-Z8N6gi2grXinwNDSTOq5HXwt7JBC9Vd17rT6r629d7xeYXK5S-SenjB181ui7XYGzq_43cDsoXIxhaq-uvKkTx8UfdeegjPEqkqBcG4cDmw3lzc_yimdZnWartKHWlWdCXZ8dJtyADMBnuwQUpwFXigp9306TsnA-n1No0ORU_B0T-OgZ5DdEOOICobVQ-A93NumIOwew&sds=2&rev=83041&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 08 Oct 2022 20:06:06 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=lz_INcDjeT0DiaMORAtI8GMFXBV4CdRXGheRiFkKdOCxlvNFlG5IgrB9hQBV-Dkr3ccrvqJVLFpRuNPRK-EJsWTS_aceEi0d8S6jSwFW5GYaYfil-ELwUPts03sieOjnxq08v8P9ms07kwsYqWTU6U5dCO5Guv9OKUCHb1i-zBIq71cgyFh-Rq-gkmC5wSRGjhjOJRRXqMB9-JKRP6_uKyp2jF0nxRN7zeVU5-iUWlXX_Ufuv2fGY63LLJMgdp45KYJHFtplv8hkH-YO&sds=2&rev=83041&sendBeacon=true
178.250.2.150200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=lz_INcDjeT0DiaMORAtI8GMFXBV4CdRXGheRiFkKdOCxlvNFlG5IgrB9hQBV-Dkr3ccrvqJVLFpRuNPRK-EJsWTS_aceEi0d8S6jSwFW5GYaYfil-ELwUPts03sieOjnxq08v8P9ms07kwsYqWTU6U5dCO5Guv9OKUCHb1i-zBIq71cgyFh-Rq-gkmC5wSRGjhjOJRRXqMB9-JKRP6_uKyp2jF0nxRN7zeVU5-iUWlXX_Ufuv2fGY63LLJMgdp45KYJHFtplv8hkH-YO&sds=2&rev=83041&sendBeacon=true
IP 178.250.2.150:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=lz_INcDjeT0DiaMORAtI8GMFXBV4CdRXGheRiFkKdOCxlvNFlG5IgrB9hQBV-Dkr3ccrvqJVLFpRuNPRK-EJsWTS_aceEi0d8S6jSwFW5GYaYfil-ELwUPts03sieOjnxq08v8P9ms07kwsYqWTU6U5dCO5Guv9OKUCHb1i-zBIq71cgyFh-Rq-gkmC5wSRGjhjOJRRXqMB9-JKRP6_uKyp2jF0nxRN7zeVU5-iUWlXX_Ufuv2fGY63LLJMgdp45KYJHFtplv8hkH-YO&sds=2&rev=83041&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 08 Oct 2022 20:06:06 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Fmakebeautynails.blogspot.com%2F2009%2F12%2Fare-you-sick-of-recovery-posts-yet.html%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1665259566130%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%221c23387b1f70c%3A1664388199485%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=c81ebb7da195633a99447d959e000ff3abe0598c
104.244.42.72200 OK 43 B URL HTTP/2 syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Fmakebeautynails.blogspot.com%2F2009%2F12%2Fare-you-sick-of-recovery-posts-yet.html%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1665259566130%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%221c23387b1f70c%3A1664388199485%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=c81ebb7da195633a99447d959e000ff3abe0598c
IP 104.244.42.72:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Fmakebeautynails.blogspot.com%2F2009%2F12%2Fare-you-sick-of-recovery-posts-yet.html%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1665259566130%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%221c23387b1f70c%3A1664388199485%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=c81ebb7da195633a99447d959e000ff3abe0598c HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://makebeautynails.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 08 Oct 2022 20:06:06 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: image/gif
cache-control: must-revalidate, max-age=600
last-modified: Sat, 08 Oct 2022 20:06:06 GMT
content-length: 43
x-transaction-id: 35f4b9578ff40807
strict-transport-security: max-age=631138519
x-response-time: 109
x-connection-hash: 9b18da9286493ae7de55519f4bc6b58885f84f482bf201682ae7e30fbc9544bc
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=8o29wsDjeT0DiaMONw8urne3nJM9au0SpTo8n2_s_IXC2qWm2JRAivtUg76M9EwMn-sEnVSoFEtmQfccq8Mu6Kn-EGWAqgAm-OY7KRuKABR4p2habRERiem0zbdVQKEsP--oCzb4bSoR5jQ4kLSvKYv-LLtkU8ufmoSsdXmFV4UvaCuEthFeQePLuy-GP2wUj2TDvLAp_f74Yr_a14LOZoD_9q0oPHOjBjg5qHhPC6B8Ga3GzSGMH3vWwxQRQmRer2lPBw&sds=2&rev=83041&sendBeacon=true
178.250.2.150200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=8o29wsDjeT0DiaMONw8urne3nJM9au0SpTo8n2_s_IXC2qWm2JRAivtUg76M9EwMn-sEnVSoFEtmQfccq8Mu6Kn-EGWAqgAm-OY7KRuKABR4p2habRERiem0zbdVQKEsP--oCzb4bSoR5jQ4kLSvKYv-LLtkU8ufmoSsdXmFV4UvaCuEthFeQePLuy-GP2wUj2TDvLAp_f74Yr_a14LOZoD_9q0oPHOjBjg5qHhPC6B8Ga3GzSGMH3vWwxQRQmRer2lPBw&sds=2&rev=83041&sendBeacon=true
IP 178.250.2.150:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=8o29wsDjeT0DiaMONw8urne3nJM9au0SpTo8n2_s_IXC2qWm2JRAivtUg76M9EwMn-sEnVSoFEtmQfccq8Mu6Kn-EGWAqgAm-OY7KRuKABR4p2habRERiem0zbdVQKEsP--oCzb4bSoR5jQ4kLSvKYv-LLtkU8ufmoSsdXmFV4UvaCuEthFeQePLuy-GP2wUj2TDvLAp_f74Yr_a14LOZoD_9q0oPHOjBjg5qHhPC6B8Ga3GzSGMH3vWwxQRQmRer2lPBw&sds=2&rev=83041&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 08 Oct 2022 20:06:06 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
jqueryapi.info/?getsrc=ok&ref=&url=http%3A%2F%2Fmakebeautynails.blogspot.com%2F2009%2F12%2Fare-you-sick-of-recovery-posts-yet.html
104.200.22.130302 Found 0 B URL HTTP/1.1 jqueryapi.info/?getsrc=ok&ref=&url=http%3A%2F%2Fmakebeautynails.blogspot.com%2F2009%2F12%2Fare-you-sick-of-recovery-posts-yet.html
IP 104.200.22.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?getsrc=ok&ref=&url=http%3A%2F%2Fmakebeautynails.blogspot.com%2F2009%2F12%2Fare-you-sick-of-recovery-posts-yet.html HTTP/1.1
Host: jqueryapi.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://makebeautynails.blogspot.com/
HTTP/1.1 302 Found
server: openresty/1.13.6.1
date: Sat, 08 Oct 2022 20:06:08 GMT
content-type: text/html; charset=utf-8
content-length: 0
location: http://www6.jqueryapi.info/?template=ARROW_3&tdfs=1&s_token=1665259459.0376460000&uuid=1665259459.0376460000&term=Javascript%20Image%20Annotation%20Library&term=Online%20Programming%20Courses&term=Coding%20Certification%20Programs&term=Ethical%20Cracking%20and%20Penetration%20Testing&searchbox=0&showDomain=0&backfill=0
vary: Accept-Language
content-language: en
set-cookie: mtm_delivered=WyJqcXVlcnlhcGkuaW5mbyIsImh0dHA6Ly93d3c2LmpxdWVyeWFwaS5pbmZvLz90ZW1wbGF0ZT1BUlJPV18zJnRkZnM9MSZzX3Rva2VuPTE2NjUyNTk0NTkuMDM3NjQ2MDAwMCZ1dWlkPTE2NjUyNTk0NTkuMDM3NjQ2MDAwMCZ0ZXJtPUphdmFzY3JpcHQlMjBJbWFnZSUyMEFubm90YXRpb24lMjBMaWJyYXJ5JnRlcm09T25saW5lJTIwUHJvZ3JhbW1pbmclMjBDb3Vyc2VzJnRlcm09Q29kaW5nJTIwQ2VydGlmaWNhdGlvbiUyMFByb2dyYW1zJnRlcm09RXRoaWNhbCUyMENyYWNraW5nJTIwYW5kJTIwUGVuZXRyYXRpb24lMjBUZXN0aW5nJnNlYXJjaGJveD0wJnNob3dEb21haW49MCZiYWNrZmlsbD0wIiwxLCIyMDIyLTEwLTA4IDIwOjA0OjE5Iiw1LCIxNjY1MjU5NDU5LjAzNzY0Njk4NDciLDc0LG51bGwsbnVsbF0:1ohG5I:sefb8r6Wr4fKa6WMxmrrPYfYJo0; expires=Sat, 08-Oct-2022 21:06:08 GMT; Max-Age=3600; Path=/
connection: close
www6.jqueryapi.info/?template=ARROW_3&tdfs=1&s_token=1665259459.0376460000&uuid=1665259459.0376460000&term=Javascript%20Image%20Annotation%20Library&term=Online%20Programming%20Courses&term=Coding%20Certification%20Programs&term=Ethical%20Cracking%20and%20Penetration%20Testing&searchbox=0&showDomain=0&backfill=0
35.186.238.101200 OK 2.6 kB URL HTTP/1.1 www6.jqueryapi.info/?template=ARROW_3&tdfs=1&s_token=1665259459.0376460000&uuid=1665259459.0376460000&term=Javascript%20Image%20Annotation%20Library&term=Online%20Programming%20Courses&term=Coding%20Certification%20Programs&term=Ethical%20Cracking%20and%20Penetration%20Testing&searchbox=0&showDomain=0&backfill=0
IP 35.186.238.101:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2551), with no line terminators
Hash 41f66bb0ac50f2d851236170e7c71341
59bcec216302151922219b51be8ad8ab6d0b8384
ec99cca58b612ce268e6ada818dfcec0acc22dd1bbe372487be9abbdd07ce073
GET /?template=ARROW_3&tdfs=1&s_token=1665259459.0376460000&uuid=1665259459.0376460000&term=Javascript%20Image%20Annotation%20Library&term=Online%20Programming%20Courses&term=Coding%20Certification%20Programs&term=Ethical%20Cracking%20and%20Penetration%20Testing&searchbox=0&showDomain=0&backfill=0 HTTP/1.1
Host: www6.jqueryapi.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://makebeautynails.blogspot.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: openresty
Date: Sat, 08 Oct 2022 20:06:08 GMT
Content-Type: text/html
Content-Length: 2551
Last-Modified: Fri, 16 Sep 2022 16:45:53 GMT
ETag: "6324a841-9f7"
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAJRmzcpTevQqkWn6dJuX/N/Hxl7YxbOwy8+73ijqYSQEN+WGxrruAKtZtliWC86+ewQ0msW1W8psOFL/b00zWqsCAwEAAQ_PHbX0/JL6zPJAkSIChMWBDSqrK+v3w1W6N23fF1RrYWLHH5wwKuP10z6VE0IO3LK326a1umCiOQNcgWsyy5oLQ
Cache-Control: no-cache
X-Content-Type-Options: nosniff
Set-Cookie: caf_ipaddr=91.90.42.154;Path=/;Max-Age=86400;
country=NO;Path=/;Max-Age=86400;
city="";Path=/;Max-Age=86400;
expiry_partner=;Path=/;Max-Age=86400;
Accept-Ranges: bytes
Via: 1.1 google
ads.eu.criteo.com/delivery/r/afr.php?z=Y0HYKwADADQKssDaAAabQFZuoKA11ymaEKnN0w&u=%7C1fWbF3sAJnFEZh1JmO%2BqFp3af34HJavpvvwXI%2BZrgA0%3D%7C&c1=TEbw32HdmhlTb08vzaRE0-J3aJQULXRb6S19EAZ80X2gBTzv4Dq5xMxb2AiDpyinZYbjjDWoUan8lT6rKyOTUYB3wP1jpWl0-8aHK6VO7ycnpjTT9e-fn9i5azu3zYg4_SIQF1gqbcvEtYOPkDxlNV9t22t5ynAXkXhOKSIokT_uPdyRQCKNYsxjPRkYMYagCYaTEu0FA_cTwhD2f8AjjkNFwJiUVkBrMcoUDkvOkM6VbnWwjHdy7BbVBTKyGr8GlJWtgAl91GcVvSfNciwqUSGUySNCnHJIu0A0K6sQw9Dt3i_7LXytsImk3Md8ZG9Bi2OiqEWFRXPGASrMySfnUc4s49_HpgONNvE5t7Z170kinHZgqA1gaZkvmAohoqCZKuIsKQVnc_l_UXFru3mInBsY6uBegaNTbCt7R_xU0yisbMU3Ai1Efx328LC20puEdJz_zH-3ZhOn1wnjql73hNYCbafFoT7bU1g5cDEQL-ub4bS_z4FdceQwI8D4dGAo0pNB5RfbXnDpecAIx_mE9QIIHOUwR1Zm693syQPbyNxbNvG3ZVmMuYCPO5fOmmou&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCwFC5K9hBY7SADNqBywXAtprwA8me0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItODE4MDM4ODY1NTUwODI3MMgBCakCJXH_5k9ZsD6oAwGqBKcCT9DwyBQXeCGpHJ6FtPI10pnRkaStrNrLBUqGaro_QHumGgRRxpsCh0uUwKv6ILJVDWdhW2YrZVepZ2UkE-BtcEqcvVvNxntCLUINoyds6MAYmOtZZz4zNFCjSqC5dq116t6-Fe6fWn4O6DVDPyim4dfhys6zdZqahKC61qRX30XDimP9KSlQGfvkdIG6cZOF0LuCjzkl1nK1Qu4oFv7-TD4mffS_tzfEBK4lam13bQTxCmgtfP3Qsdk1TrUnkzdhORJ50896IzLRa5eTpbYDzKDjVMrZHNG3cfvSa8crjG8ONy4t5VlXBAYYLpIDjby5gOO8A-hS9yyfYP_IrFrfWlyP8DYdvQE-GMsxvW5tx_skSsL0-EHmGPBvsbRsp0c1WBR3V3gVY4AGtLTNpc6fmteXAaAGIagHipixAqgHpr4bqAeW2BuoB6qbsQKoB_-esQKoB9-fsQLYBwDSCA8IgOGAcBABMgLrAjoCgED6CwIIAYAMAdAVAYAXAQ%26num%3D1%26sig%3DAOD64_3bNEf0MaObFcHIj6YqaEnaCwvi0Q%26client%3Dca-pub-8180388655508270%26adurl%3D
178.250.0.138200 OK 0 B URL HTTP/2 ads.eu.criteo.com/delivery/r/afr.php?z=Y0HYKwADADQKssDaAAabQFZuoKA11ymaEKnN0w&u=%7C1fWbF3sAJnFEZh1JmO%2BqFp3af34HJavpvvwXI%2BZrgA0%3D%7C&c1=TEbw32HdmhlTb08vzaRE0-J3aJQULXRb6S19EAZ80X2gBTzv4Dq5xMxb2AiDpyinZYbjjDWoUan8lT6rKyOTUYB3wP1jpWl0-8aHK6VO7ycnpjTT9e-fn9i5azu3zYg4_SIQF1gqbcvEtYOPkDxlNV9t22t5ynAXkXhOKSIokT_uPdyRQCKNYsxjPRkYMYagCYaTEu0FA_cTwhD2f8AjjkNFwJiUVkBrMcoUDkvOkM6VbnWwjHdy7BbVBTKyGr8GlJWtgAl91GcVvSfNciwqUSGUySNCnHJIu0A0K6sQw9Dt3i_7LXytsImk3Md8ZG9Bi2OiqEWFRXPGASrMySfnUc4s49_HpgONNvE5t7Z170kinHZgqA1gaZkvmAohoqCZKuIsKQVnc_l_UXFru3mInBsY6uBegaNTbCt7R_xU0yisbMU3Ai1Efx328LC20puEdJz_zH-3ZhOn1wnjql73hNYCbafFoT7bU1g5cDEQL-ub4bS_z4FdceQwI8D4dGAo0pNB5RfbXnDpecAIx_mE9QIIHOUwR1Zm693syQPbyNxbNvG3ZVmMuYCPO5fOmmou&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCwFC5K9hBY7SADNqBywXAtprwA8me0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItODE4MDM4ODY1NTUwODI3MMgBCakCJXH_5k9ZsD6oAwGqBKcCT9DwyBQXeCGpHJ6FtPI10pnRkaStrNrLBUqGaro_QHumGgRRxpsCh0uUwKv6ILJVDWdhW2YrZVepZ2UkE-BtcEqcvVvNxntCLUINoyds6MAYmOtZZz4zNFCjSqC5dq116t6-Fe6fWn4O6DVDPyim4dfhys6zdZqahKC61qRX30XDimP9KSlQGfvkdIG6cZOF0LuCjzkl1nK1Qu4oFv7-TD4mffS_tzfEBK4lam13bQTxCmgtfP3Qsdk1TrUnkzdhORJ50896IzLRa5eTpbYDzKDjVMrZHNG3cfvSa8crjG8ONy4t5VlXBAYYLpIDjby5gOO8A-hS9yyfYP_IrFrfWlyP8DYdvQE-GMsxvW5tx_skSsL0-EHmGPBvsbRsp0c1WBR3V3gVY4AGtLTNpc6fmteXAaAGIagHipixAqgHpr4bqAeW2BuoB6qbsQKoB_-esQKoB9-fsQLYBwDSCA8IgOGAcBABMgLrAjoCgED6CwIIAYAMAdAVAYAXAQ%26num%3D1%26sig%3DAOD64_3bNEf0MaObFcHIj6YqaEnaCwvi0Q%26client%3Dca-pub-8180388655508270%26adurl%3D
IP 178.250.0.138:0
GET /delivery/r/afr.php?z=Y0HYKwADADQKssDaAAabQFZuoKA11ymaEKnN0w&u=%7C1fWbF3sAJnFEZh1JmO%2BqFp3af34HJavpvvwXI%2BZrgA0%3D%7C&c1=TEbw32HdmhlTb08vzaRE0-J3aJQULXRb6S19EAZ80X2gBTzv4Dq5xMxb2AiDpyinZYbjjDWoUan8lT6rKyOTUYB3wP1jpWl0-8aHK6VO7ycnpjTT9e-fn9i5azu3zYg4_SIQF1gqbcvEtYOPkDxlNV9t22t5ynAXkXhOKSIokT_uPdyRQCKNYsxjPRkYMYagCYaTEu0FA_cTwhD2f8AjjkNFwJiUVkBrMcoUDkvOkM6VbnWwjHdy7BbVBTKyGr8GlJWtgAl91GcVvSfNciwqUSGUySNCnHJIu0A0K6sQw9Dt3i_7LXytsImk3Md8ZG9Bi2OiqEWFRXPGASrMySfnUc4s49_HpgONNvE5t7Z170kinHZgqA1gaZkvmAohoqCZKuIsKQVnc_l_UXFru3mInBsY6uBegaNTbCt7R_xU0yisbMU3Ai1Efx328LC20puEdJz_zH-3ZhOn1wnjql73hNYCbafFoT7bU1g5cDEQL-ub4bS_z4FdceQwI8D4dGAo0pNB5RfbXnDpecAIx_mE9QIIHOUwR1Zm693syQPbyNxbNvG3ZVmMuYCPO5fOmmou&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCwFC5K9hBY7SADNqBywXAtprwA8me0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItODE4MDM4ODY1NTUwODI3MMgBCakCJXH_5k9ZsD6oAwGqBKcCT9DwyBQXeCGpHJ6FtPI10pnRkaStrNrLBUqGaro_QHumGgRRxpsCh0uUwKv6ILJVDWdhW2YrZVepZ2UkE-BtcEqcvVvNxntCLUINoyds6MAYmOtZZz4zNFCjSqC5dq116t6-Fe6fWn4O6DVDPyim4dfhys6zdZqahKC61qRX30XDimP9KSlQGfvkdIG6cZOF0LuCjzkl1nK1Qu4oFv7-TD4mffS_tzfEBK4lam13bQTxCmgtfP3Qsdk1TrUnkzdhORJ50896IzLRa5eTpbYDzKDjVMrZHNG3cfvSa8crjG8ONy4t5VlXBAYYLpIDjby5gOO8A-hS9yyfYP_IrFrfWlyP8DYdvQE-GMsxvW5tx_skSsL0-EHmGPBvsbRsp0c1WBR3V3gVY4AGtLTNpc6fmteXAaAGIagHipixAqgHpr4bqAeW2BuoB6qbsQKoB_-esQKoB9-fsQLYBwDSCA8IgOGAcBABMgLrAjoCgED6CwIIAYAMAdAVAYAXAQ%26num%3D1%26sig%3DAOD64_3bNEf0MaObFcHIj6YqaEnaCwvi0Q%26client%3Dca-pub-8180388655508270%26adurl%3D HTTP/1.1
Host: ads.eu.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 08 Oct 2022 20:06:03 GMT
content-type: text/html
server: Kestrel
cache-control: private, max-age=0, no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-max-age: 1000
cross-origin-resource-policy: cross-origin
p3p: CP='CUR ADM OUR NOR STA NID'
report-to: {"endpoints":[{"url":"https://csm.eu.criteo.net/heavyad?cppv=3&cpp=lz_INcDjeT0DiaMORAtI8GMFXBV4CdRXGheRiFkKdOCxlvNFlG5IgrB9hQBV-Dkr3ccrvqJVLFpRuNPRK-EJsWTS_aceEi0d8S6jSwFW5GYaYfil-ELwUPts03sieOjnxq08v8P9ms07kwsYqWTU6U5dCO5Guv9OKUCHb1i-zBIq71cgyFh-Rq-gkmC5wSRGjhjOJRRXqMB9-JKRP6_uKyp2jF0nxRN7zeVU5-iUWlXX_Ufuv2fGY63LLJMgdp45KYJHFtplv8hkH-YO"}], "max_age": 86400}
link: <pix.eu.criteo.net>; rel=preconnect; crossorigin, <static.criteo.net>; rel=preconnect; crossorigin
server-processing-duration-in-ticks: 171662110
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
cat.fr.eu.criteo.com/delivery/lg.php?cppv=3&cpp=Kh0KAdgJZ7RCrsWxq7a_Wh-Z29s6KNQ1wOnYgis-S9lgX8i67LF_ZiTVIVaLBoTkKjObfU0_UMx4_sSBY3bBAvo13-64Qmgtp4GQb7gDXvzfsXOYyjirBf58ZW0lUyjueGbTHQ8y7vAIpGTXmGG96fe-6bsKMR51sr0Ve1fZPLf3l-yjyDWEFsdJvSxkDUJQ6yZmZ1J2UDBcaHmKrevWzsu86IiyCpwOUS9Fk5-SWvRe-aCz8hu86hPBwCjfQ0pF3w70lerpsBD5wlYHqO6bm8wnb8WlCmyOEZK7k-7E3XXr0sf6WM6MsgfL33S0gCAXYWyjhqus9Bfj2RssWjMOA5nKMawel9TMeQWeXf-kGNhmmYlRRAzFPKpeicc2GrrtsiFPaIxUiLxwdIK7RUdz371zq4OTE8sKA2nLpQKwhMQabRMG
178.250.0.160200 OK 0 B URL HTTP/2 cat.fr.eu.criteo.com/delivery/lg.php?cppv=3&cpp=Kh0KAdgJZ7RCrsWxq7a_Wh-Z29s6KNQ1wOnYgis-S9lgX8i67LF_ZiTVIVaLBoTkKjObfU0_UMx4_sSBY3bBAvo13-64Qmgtp4GQb7gDXvzfsXOYyjirBf58ZW0lUyjueGbTHQ8y7vAIpGTXmGG96fe-6bsKMR51sr0Ve1fZPLf3l-yjyDWEFsdJvSxkDUJQ6yZmZ1J2UDBcaHmKrevWzsu86IiyCpwOUS9Fk5-SWvRe-aCz8hu86hPBwCjfQ0pF3w70lerpsBD5wlYHqO6bm8wnb8WlCmyOEZK7k-7E3XXr0sf6WM6MsgfL33S0gCAXYWyjhqus9Bfj2RssWjMOA5nKMawel9TMeQWeXf-kGNhmmYlRRAzFPKpeicc2GrrtsiFPaIxUiLxwdIK7RUdz371zq4OTE8sKA2nLpQKwhMQabRMG
IP 178.250.0.160:0
GET /delivery/lg.php?cppv=3&cpp=Kh0KAdgJZ7RCrsWxq7a_Wh-Z29s6KNQ1wOnYgis-S9lgX8i67LF_ZiTVIVaLBoTkKjObfU0_UMx4_sSBY3bBAvo13-64Qmgtp4GQb7gDXvzfsXOYyjirBf58ZW0lUyjueGbTHQ8y7vAIpGTXmGG96fe-6bsKMR51sr0Ve1fZPLf3l-yjyDWEFsdJvSxkDUJQ6yZmZ1J2UDBcaHmKrevWzsu86IiyCpwOUS9Fk5-SWvRe-aCz8hu86hPBwCjfQ0pF3w70lerpsBD5wlYHqO6bm8wnb8WlCmyOEZK7k-7E3XXr0sf6WM6MsgfL33S0gCAXYWyjhqus9Bfj2RssWjMOA5nKMawel9TMeQWeXf-kGNhmmYlRRAzFPKpeicc2GrrtsiFPaIxUiLxwdIK7RUdz371zq4OTE8sKA2nLpQKwhMQabRMG HTTP/1.1
Host: cat.fr.eu.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 08 Oct 2022 20:06:04 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
server-processing-duration-in-ticks: 2359961
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
cat.fr.eu.criteo.com/delivery/lg.php?cppv=3&cpp=_kfBtn45yNyOfV29OJRouqUwN6syCBf3dRXJvdbFSDomswfWjqUkfSD_QKk59NiW02ymwW0pod48X2lrqtIkOgtYNP303mbOcqVjKP-93m8mo_bBmIpD4HSp9HDNrhOvKIxZsKoTZdRqfOwuaQYNRcxYgL9ONGKKfnCVRSeIYXz5noY7jucpuiEKmwdNSfbuWEV7y1owfwd30kVQe9AlqyPFgoKCUupqZxLC5E8o4dh6zK4Xwve3_PyZpuej-KKvbiCXAiNW_oj-GVeCfJFS5HJP-rh9tEE16hib5akdwfOdFIrfKGpEvdIKCJzj1SVCnIa5TWj4WM-In2G8jXcvn3902MHxMmXF2genOa-h1LJdfqeZ-Swj1uCVWniZegjVDpHXlNKo9eW0E3tt4LizpTzjmB56wbD58SnXjz1LmGIV-SBS
178.250.0.160200 OK 0 B URL HTTP/2 cat.fr.eu.criteo.com/delivery/lg.php?cppv=3&cpp=_kfBtn45yNyOfV29OJRouqUwN6syCBf3dRXJvdbFSDomswfWjqUkfSD_QKk59NiW02ymwW0pod48X2lrqtIkOgtYNP303mbOcqVjKP-93m8mo_bBmIpD4HSp9HDNrhOvKIxZsKoTZdRqfOwuaQYNRcxYgL9ONGKKfnCVRSeIYXz5noY7jucpuiEKmwdNSfbuWEV7y1owfwd30kVQe9AlqyPFgoKCUupqZxLC5E8o4dh6zK4Xwve3_PyZpuej-KKvbiCXAiNW_oj-GVeCfJFS5HJP-rh9tEE16hib5akdwfOdFIrfKGpEvdIKCJzj1SVCnIa5TWj4WM-In2G8jXcvn3902MHxMmXF2genOa-h1LJdfqeZ-Swj1uCVWniZegjVDpHXlNKo9eW0E3tt4LizpTzjmB56wbD58SnXjz1LmGIV-SBS
IP 178.250.0.160:0
GET /delivery/lg.php?cppv=3&cpp=_kfBtn45yNyOfV29OJRouqUwN6syCBf3dRXJvdbFSDomswfWjqUkfSD_QKk59NiW02ymwW0pod48X2lrqtIkOgtYNP303mbOcqVjKP-93m8mo_bBmIpD4HSp9HDNrhOvKIxZsKoTZdRqfOwuaQYNRcxYgL9ONGKKfnCVRSeIYXz5noY7jucpuiEKmwdNSfbuWEV7y1owfwd30kVQe9AlqyPFgoKCUupqZxLC5E8o4dh6zK4Xwve3_PyZpuej-KKvbiCXAiNW_oj-GVeCfJFS5HJP-rh9tEE16hib5akdwfOdFIrfKGpEvdIKCJzj1SVCnIa5TWj4WM-In2G8jXcvn3902MHxMmXF2genOa-h1LJdfqeZ-Swj1uCVWniZegjVDpHXlNKo9eW0E3tt4LizpTzjmB56wbD58SnXjz1LmGIV-SBS HTTP/1.1
Host: cat.fr.eu.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sat, 08 Oct 2022 20:06:03 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
server-processing-duration-in-ticks: 3050244
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ads.eu.criteo.com/delivery/r/afr.php?z=Y0HYKwACnjsK5gwRAA0_HoV4bXFxV0-JZV12bg&u=%7C1fWbF3sAJnE6ZhT7OCvBuzcWtOL1Dz%2FBeGaBMGb%2FXoE%3D%7C&c1=TEbw32HdmhlTb08vzaRE01gjP6XVckOXmW9UoUGT_GI2b2B5z8aCCSnbAiDmxoSwicJ1n4MV4gztH_yH8AaKsb8PioTDW7YaXsB-ngwrik-3foCdarbdVTbQUk7IQpxhMsK1wOkGn-QMv4pA2TVzViPuQMGIy7mz_fbqub0JOG5u7IsHrWyjL6Kr7RZ3ZdcjzaLLe5a-XcOjNEQZ6tbWBJvb8WozzFhfpTaBDq5SQdnsrg7_WTytj6jd-1i4jfdFNoXW-7sitIavzN9Ab6OkEEs6QWbseYprGSV3i5RDBIZS_HiobVMEy0wnSuB_jlTAmH2uiJja8k0kMMeNjrd3rV6t-_tDQa0ALafUYinaunaNWqKm9mEIOXraVWN1uVIuYCIfupZtde-fF19lRrGumYSOMvJ_ClLVlt6SWg_7Lcc4gZ1KznE8OhRUoECmfn8C8UP0WfHJ6J3zvecJgVVz-Wvv9o7ws_X1-IjMIr3S_kkRvRCS_9UfV8Lw2-a9pH6KDCu26fhsUaRMKWQ792fyGdN2-52SiGk7SsNxi3xwfJy8zAfl87tiYA&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCbXIHK9hBY7u8CpGYmAee_rT4Dsme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItODE4MDM4ODY1NTUwODI3MMgBCakCJXH_5k9ZsD6oAwGqBKYCT9BkqthjB83IRzWJzlGiP3cteeEg0DaMBH42tdOBe6Q8W8_UwvtDuT6MNjuOnZ8qfwm2tJ0zE-MKcJDfj0UAQm6eduhI_BfbjHdK7QgjtZVlqnaE93O_lAw9CKUrPzz6oG1jnwvIIBDjwZYKlUoBunlbuGTAPCv8wnSyXLa2bnc4OCYCrSMmaFwb1J48CIdqEjnqH-5Oz750OQA2GSkBjz5HaHogk3WrxF9t-EjbDtEnbH2haW2OnbK-DnRlIYq_c2nWvfSn2kENAKNgjudSJQYhXxM_L_uhOwPFP2-mY82CncAY9FQRYs72YH3Wej8cXv6qwLw4EQFtS7lr5Q_FLEevJdjXgTjoBPm5U4ipMs_akEGxEVxMuXCp4IIEgvmoBDBYoQjQgAa0tM2lzp-a15cBoAYhqAeKmLECqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_3VJBHWxODSAb-uNSxHpsuTeFubHw%26client%3Dca-pub-8180388655508270%26adurl%3D
178.250.0.138200 OK 0 B URL HTTP/2 ads.eu.criteo.com/delivery/r/afr.php?z=Y0HYKwACnjsK5gwRAA0_HoV4bXFxV0-JZV12bg&u=%7C1fWbF3sAJnE6ZhT7OCvBuzcWtOL1Dz%2FBeGaBMGb%2FXoE%3D%7C&c1=TEbw32HdmhlTb08vzaRE01gjP6XVckOXmW9UoUGT_GI2b2B5z8aCCSnbAiDmxoSwicJ1n4MV4gztH_yH8AaKsb8PioTDW7YaXsB-ngwrik-3foCdarbdVTbQUk7IQpxhMsK1wOkGn-QMv4pA2TVzViPuQMGIy7mz_fbqub0JOG5u7IsHrWyjL6Kr7RZ3ZdcjzaLLe5a-XcOjNEQZ6tbWBJvb8WozzFhfpTaBDq5SQdnsrg7_WTytj6jd-1i4jfdFNoXW-7sitIavzN9Ab6OkEEs6QWbseYprGSV3i5RDBIZS_HiobVMEy0wnSuB_jlTAmH2uiJja8k0kMMeNjrd3rV6t-_tDQa0ALafUYinaunaNWqKm9mEIOXraVWN1uVIuYCIfupZtde-fF19lRrGumYSOMvJ_ClLVlt6SWg_7Lcc4gZ1KznE8OhRUoECmfn8C8UP0WfHJ6J3zvecJgVVz-Wvv9o7ws_X1-IjMIr3S_kkRvRCS_9UfV8Lw2-a9pH6KDCu26fhsUaRMKWQ792fyGdN2-52SiGk7SsNxi3xwfJy8zAfl87tiYA&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCbXIHK9hBY7u8CpGYmAee_rT4Dsme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItODE4MDM4ODY1NTUwODI3MMgBCakCJXH_5k9ZsD6oAwGqBKYCT9BkqthjB83IRzWJzlGiP3cteeEg0DaMBH42tdOBe6Q8W8_UwvtDuT6MNjuOnZ8qfwm2tJ0zE-MKcJDfj0UAQm6eduhI_BfbjHdK7QgjtZVlqnaE93O_lAw9CKUrPzz6oG1jnwvIIBDjwZYKlUoBunlbuGTAPCv8wnSyXLa2bnc4OCYCrSMmaFwb1J48CIdqEjnqH-5Oz750OQA2GSkBjz5HaHogk3WrxF9t-EjbDtEnbH2haW2OnbK-DnRlIYq_c2nWvfSn2kENAKNgjudSJQYhXxM_L_uhOwPFP2-mY82CncAY9FQRYs72YH3Wej8cXv6qwLw4EQFtS7lr5Q_FLEevJdjXgTjoBPm5U4ipMs_akEGxEVxMuXCp4IIEgvmoBDBYoQjQgAa0tM2lzp-a15cBoAYhqAeKmLECqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_3VJBHWxODSAb-uNSxHpsuTeFubHw%26client%3Dca-pub-8180388655508270%26adurl%3D
IP 178.250.0.138:0
GET /delivery/r/afr.php?z=Y0HYKwACnjsK5gwRAA0_HoV4bXFxV0-JZV12bg&u=%7C1fWbF3sAJnE6ZhT7OCvBuzcWtOL1Dz%2FBeGaBMGb%2FXoE%3D%7C&c1=TEbw32HdmhlTb08vzaRE01gjP6XVckOXmW9UoUGT_GI2b2B5z8aCCSnbAiDmxoSwicJ1n4MV4gztH_yH8AaKsb8PioTDW7YaXsB-ngwrik-3foCdarbdVTbQUk7IQpxhMsK1wOkGn-QMv4pA2TVzViPuQMGIy7mz_fbqub0JOG5u7IsHrWyjL6Kr7RZ3ZdcjzaLLe5a-XcOjNEQZ6tbWBJvb8WozzFhfpTaBDq5SQdnsrg7_WTytj6jd-1i4jfdFNoXW-7sitIavzN9Ab6OkEEs6QWbseYprGSV3i5RDBIZS_HiobVMEy0wnSuB_jlTAmH2uiJja8k0kMMeNjrd3rV6t-_tDQa0ALafUYinaunaNWqKm9mEIOXraVWN1uVIuYCIfupZtde-fF19lRrGumYSOMvJ_ClLVlt6SWg_7Lcc4gZ1KznE8OhRUoECmfn8C8UP0WfHJ6J3zvecJgVVz-Wvv9o7ws_X1-IjMIr3S_kkRvRCS_9UfV8Lw2-a9pH6KDCu26fhsUaRMKWQ792fyGdN2-52SiGk7SsNxi3xwfJy8zAfl87tiYA&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCbXIHK9hBY7u8CpGYmAee_rT4Dsme0rFc1Z2R93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItODE4MDM4ODY1NTUwODI3MMgBCakCJXH_5k9ZsD6oAwGqBKYCT9BkqthjB83IRzWJzlGiP3cteeEg0DaMBH42tdOBe6Q8W8_UwvtDuT6MNjuOnZ8qfwm2tJ0zE-MKcJDfj0UAQm6eduhI_BfbjHdK7QgjtZVlqnaE93O_lAw9CKUrPzz6oG1jnwvIIBDjwZYKlUoBunlbuGTAPCv8wnSyXLa2bnc4OCYCrSMmaFwb1J48CIdqEjnqH-5Oz750OQA2GSkBjz5HaHogk3WrxF9t-EjbDtEnbH2haW2OnbK-DnRlIYq_c2nWvfSn2kENAKNgjudSJQYhXxM_L_uhOwPFP2-mY82CncAY9FQRYs72YH3Wej8cXv6qwLw4EQFtS7lr5Q_FLEevJdjXgTjoBPm5U4ipMs_akEGxEVxMuXCp4IIEgvmoBDBYoQjQgAa0tM2lzp-a15cBoAYhqAeKmLECqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_3VJBHWxODSAb-uNSxHpsuTeFubHw%26client%3Dca-pub-8180388655508270%26adurl%3D HTTP/1.1
Host: ads.eu.criteo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 08 Oct 2022 20:06:03 GMT
content-type: text/html
server: Kestrel
cache-control: private, max-age=0, no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-max-age: 1000
cross-origin-resource-policy: cross-origin
p3p: CP='CUR ADM OUR NOR STA NID'
report-to: {"endpoints":[{"url":"https://csm.eu.criteo.net/heavyad?cppv=3&cpp=3v3zZcDjeT0DiaMOYtqEGhebWRkysL0y5ZOZDne4HrnfT7Mmobeu6KpEbCccnEpp-Kv4B-FKtLuqIfxiE5cC2kRubQMSuIwgD08JVTGSbVQjXPQhS2nYI9wkT3dSJqM9FtZeCtUO2gFtz0G_uPRourqoybZxgpgDAkyF09R3tQbq9Jhbal7-O_6rAslYAg2w8PGKvEWOqYu3GwXxLelXNxf13Gnq2THuB1qXt38F3snx6M94qIFtfkggbsVQZGuytRWRHMFQdFSEz19o"}], "max_age": 86400}
link: <pix.eu.criteo.net>; rel=preconnect; crossorigin, <static.criteo.net>; rel=preconnect; crossorigin
server-processing-duration-in-ticks: 128298302
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2