r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f2acd891dc6eb1f09f57a2b086791781
1e2088306501a61edcca1ade62c4d54f23b3b083
51148fed95cc00d60dc3640350f135b1b2763ff0e3cfbffc40f0948317894be9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "51148FED95CC00D60DC3640350F135B1B2763FF0E3CFBFFC40F0948317894BE9"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10340
Expires: Thu, 08 Dec 2022 19:12:37 GMT
Date: Thu, 08 Dec 2022 16:20:17 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 388f6fea5bafa378266622b72311a6ee
447f102dc12172ce1ba44c5e94e1d7bb49d43372
a597afb4d4f7f3c82f0f2857322226fc69dc92e099bfd0605f7a0cd562be9d21
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A597AFB4D4F7F3C82F0F2857322226FC69DC92E099BFD0605F7A0CD562BE9D21"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13359
Expires: Thu, 08 Dec 2022 20:02:56 GMT
Date: Thu, 08 Dec 2022 16:20:17 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Length, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 08 Dec 2022 16:08:13 GMT
content-type: application/json
age: 724
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c3470f9f0a4df8c1496b577fa9435ff6
f83b0226bb57ed0f3e1acdad61b940414add135d
f542579e3a3577a646babde862282c2afda6ed784360a915143216100f7a3d91
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F542579E3A3577A646BABDE862282C2AFDA6ED784360A915143216100F7A3D91"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7735
Expires: Thu, 08 Dec 2022 18:29:12 GMT
Date: Thu, 08 Dec 2022 16:20:17 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: RRjfeobYjBRoydtF9/OKVnbEQW7r9I+7wt2JR1Nz4WhWgqQn4vKJURgRUn9E/o/IqL4LaQ0NBw0=
x-amz-request-id: MQWKDS6FJH2FDMCP
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 08 Dec 2022 15:49:50 GMT
age: 1827
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:20:17 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
alfabetizacaoecia.blogspot.com/search/label/ATIVIDADES%20CORPO%20HUMANO
142.250.74.161200 OK 28 kB URL HTTP/1.1 alfabetizacaoecia.blogspot.com/search/label/ATIVIDADES%20CORPO%20HUMANO
IP 142.250.74.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1976)
Hash a977b66597f7e45d5c80536a9a1e8c84
08bcac1b8789ea1b46ece8bfdb1ad2235ae54ce6
21b89d375792bae60cf4e1c28d6ebc28148f45eaad04c9371374a9ba09c6caba
Analyzer Verdict Alert fortinet Malware
GET /search/label/ATIVIDADES%20CORPO%20HUMANO HTTP/1.1
Host: alfabetizacaoecia.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Thu, 08 Dec 2022 16:20:17 GMT
Date: Thu, 08 Dec 2022 16:20:17 GMT
Cache-Control: private, max-age=0
Last-Modified: Sat, 26 Nov 2022 09:14:53 GMT
ETag: W/"3189584ab2ad2687fba4a410ca6137aea8297724fb6a1db99b6a707086bffe48"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 28353
Server: GSE
pagead2.googlesyndication.com/pagead/show_ads.js
216.58.207.194200 OK 36 kB URL HTTP/1.1 pagead2.googlesyndication.com/pagead/show_ads.js
IP 216.58.207.194:0
File type ASCII text, with very long lines (3577)
Hash 467d3f3828d79ddc1715326e042838a6
22024b198543021c847d010a1a0d27e796ef682e
3c294e1053b28917764e201a0c78532669d57fee18abd1e07891bf12c08134b9
GET /pagead/show_ads.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alfabetizacaoecia.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Date: Thu, 08 Dec 2022 16:20:18 GMT
Expires: Thu, 08 Dec 2022 16:20:18 GMT
Cache-Control: private, max-age=3600
Content-Type: text/javascript; charset=UTF-8
ETag: 8756175152761487701
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 36079
X-XSS-Protection: 0
www.google.com/coop/cse/brand?form=cse-search-box&lang=pt
142.250.74.132301 Moved Permanently 237 B URL HTTP/1.1 www.google.com/coop/cse/brand?form=cse-search-box&lang=pt
IP 142.250.74.132:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash bda0dec939809d66ff8388fe5c716412
d768e1edcca0d64e15c1a26978d19c8fdfbd4e4f
334f05a39cdb64bac9f876dd2a2011649d08d578f6d751460c91ca294f3304cd
GET /coop/cse/brand?form=cse-search-box&lang=pt HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alfabetizacaoecia.blogspot.com/
HTTP/1.1 301 Moved Permanently
Location: https://www.gstatic.com/prose/brandjs.js
Content-Type: text/html; charset=UTF-8
X-Content-Type-Options: nosniff
Date: Thu, 08 Dec 2022 16:20:18 GMT
Expires: Thu, 08 Dec 2022 16:50:18 GMT
Cache-Control: public, max-age=1800
Server: sffe
Content-Length: 237
X-XSS-Protection: 0
alfabetizacaoecia.blogspot.com/js/cookienotice.js
142.250.74.161200 OK 2.0 kB URL HTTP/1.1 alfabetizacaoecia.blogspot.com/js/cookienotice.js
IP 142.250.74.161:0
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
Analyzer Verdict Alert fortinet Malware
GET /js/cookienotice.js HTTP/1.1
Host: alfabetizacaoecia.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alfabetizacaoecia.blogspot.com/search/label/ATIVIDADES%20CORPO%20HUMANO
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/javascript
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
Date: Thu, 08 Dec 2022 16:20:18 GMT
Expires: Thu, 15 Dec 2022 16:20:18 GMT
Cache-Control: public, max-age=604800
Last-Modified: Thu, 08 Dec 2022 14:52:48 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 88340a984105f6537a74a5198a569c8a
eca386f9fafa3be5aae2696dca30406bace829b4
2da3703b37eb2327164cbbe9f8e267e8daa93328692fb381c62e095bab37275c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 16:20:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 4a5c2a2d50893431367319c3eb5fd0bc
c076b77d1c599d2711a212258ffd5dc4eca82925
0c98da58e2abb90a770dbd9d97277cd8836fb79fc15aace4a95d1fb5ee4c1db4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 16:20:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
216.58.207.194200 OK 52 kB URL HTTP/1.1 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP 216.58.207.194:0
File type ASCII text, with very long lines (4885)
Hash 825b001667e522278360265a9cde2166
c1bde14f78ed735db79d92203d85e40c3c59a3bb
ce93a62353eda8222e7485c2261c95a28b491022629e3e80a43e6da1b1420809
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alfabetizacaoecia.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Date: Thu, 08 Dec 2022 16:20:18 GMT
Expires: Thu, 08 Dec 2022 16:20:18 GMT
Cache-Control: private, max-age=3600
Content-Type: text/javascript; charset=UTF-8
ETag: 15004200553351713435
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 52064
X-XSS-Protection: 0
servicos.codigofonte.net/contador/log.php?id=82480&d=apple
104.21.37.73403 Forbidden 3.9 kB URL HTTP/1.1 servicos.codigofonte.net/contador/log.php?id=82480&d=apple
IP 104.21.37.73:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (879)
Hash 6160f14a8128d8d361b1a10840bd58f6
56a4094645b9cd9c6f7c1c631c4f852bbe83bfb8
8f25edd5f081877890a95622a1d996f877fcf1001036317fac62dabcf722071a
GET /contador/log.php?id=82480&d=apple HTTP/1.1
Host: servicos.codigofonte.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alfabetizacaoecia.blogspot.com/
HTTP/1.1 403 Forbidden
Date: Thu, 08 Dec 2022 16:20:18 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
CF-Chl-Bypass: 1
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cbYJFLdpbRfetmASrM9Ua43FPwvl7fgn0kLt5MhvuDi48DdAmDv3IS4vWJEuHiCuNVrs4zcRsKmfb3iJQ0tD%2BJ04atdTiQfVeZpJpvAXeqqJ9Swa0RzsDYlQh0jPXcHWqHd409NhGN8nd94%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7766d3dd2e550b45-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
apis.google.com/js/platform.js
142.250.74.78200 OK 21 kB URL HTTP/2 apis.google.com/js/platform.js
IP 142.250.74.78:0
File type ASCII text, with very long lines (1279)
Hash 7ac44ef24e267df17ff72f195b252806
62db12d9ce11a576ccd7fa3544d851c5fd42f3b7
aae7897e7b55999c1b3166309381d19ac488dced51e14071339d8b193a686a61
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alfabetizacaoecia.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20984
date: Thu, 08 Dec 2022 16:20:18 GMT
expires: Thu, 08 Dec 2022 16:20:18 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "7446758f13887885"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 4a5c2a2d50893431367319c3eb5fd0bc
c076b77d1c599d2711a212258ffd5dc4eca82925
0c98da58e2abb90a770dbd9d97277cd8836fb79fc15aace4a95d1fb5ee4c1db4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 16:20:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 4a5c2a2d50893431367319c3eb5fd0bc
c076b77d1c599d2711a212258ffd5dc4eca82925
0c98da58e2abb90a770dbd9d97277cd8836fb79fc15aace4a95d1fb5ee4c1db4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 16:20:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 4b1c4d797d1d2fef94993a69a7cb423a
d4d0f3b2eccd29dddef0f1ec51309de97c6c05a4
d2f98268392005d93b5bce9c019c360400b09ac369fc8e8cbc1edba7ed6d929d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 16:20:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 4b1c4d797d1d2fef94993a69a7cb423a
d4d0f3b2eccd29dddef0f1ec51309de97c6c05a4
d2f98268392005d93b5bce9c019c360400b09ac369fc8e8cbc1edba7ed6d929d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 16:20:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/static/v1/widgets/2975350028-css_bundle_v2.css
216.58.207.233200 OK 7.8 kB URL HTTP/2 www.blogger.com/static/v1/widgets/2975350028-css_bundle_v2.css
IP 216.58.207.233:0
File type ASCII text, with very long lines (35959)
Hash 5aa2d3297bdc86bc81322aedecbb5e79
1c0a3c007e41726e167e79b70ddea76198650884
feae1fac625d0f30b5f10fa00b62df1a5600cd2178062c427e55f289b29cc630
GET /static/v1/widgets/2975350028-css_bundle_v2.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alfabetizacaoecia.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 7776
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Dec 2022 21:47:55 GMT
expires: Wed, 06 Dec 2023 21:47:55 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 05 Dec 2022 21:53:25 GMT
content-type: text/css
age: 153143
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/blogger_img_proxy/ANbyha2RbH9XkbI9iJ7BIxIwS9Wqko3MxGO3KAeurhAz1lDWp1W2OHFG_dbVPrdxZLheSmTzs_lEPmviO7M8HBeWZkT9CSLybF5IZucn84GziR-ZBpU4f4iybNnRSLe1geb6gi8OBXowDIw9sDYP7s6mKJ5WsPeSEgh1Ts2jCGFneXUBjnl_iUpV6UJ2PzHLMZc=w72-h72-p-k-no-nu
142.250.74.97200 OK 2.9 kB URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ANbyha2RbH9XkbI9iJ7BIxIwS9Wqko3MxGO3KAeurhAz1lDWp1W2OHFG_dbVPrdxZLheSmTzs_lEPmviO7M8HBeWZkT9CSLybF5IZucn84GziR-ZBpU4f4iybNnRSLe1geb6gi8OBXowDIw9sDYP7s6mKJ5WsPeSEgh1Ts2jCGFneXUBjnl_iUpV6UJ2PzHLMZc=w72-h72-p-k-no-nu
IP 142.250.74.97:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 72x72, components 3\012- data
Hash 670456e53bb8d80b7bc37e5289e331cd
8c77c4683995c474287a812070b2693eacd3cf8e
dbba686769b68849d8e8e2cb7ab2cef957f6199a7c5c41cdfef395d6d366f4e1
GET /blogger_img_proxy/ANbyha2RbH9XkbI9iJ7BIxIwS9Wqko3MxGO3KAeurhAz1lDWp1W2OHFG_dbVPrdxZLheSmTzs_lEPmviO7M8HBeWZkT9CSLybF5IZucn84GziR-ZBpU4f4iybNnRSLe1geb6gi8OBXowDIw9sDYP7s6mKJ5WsPeSEgh1Ts2jCGFneXUBjnl_iUpV6UJ2PzHLMZc=w72-h72-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alfabetizacaoecia.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Fri, 09 Dec 2022 16:20:18 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Thu, 08 Dec 2022 16:20:18 GMT
server: fife
content-length: 2926
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0e9eef4ed41ef94e9ea175ad243e294e
b6f83e508270413dabe55e2884b5409ca7978e24
0e741ca8d92717128bca7aed937bca43519a8d20a9d3dd8670da656ad51a695e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 16:20:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bp3.blogger.com/_JBLExmx6Nw8/SH957aMV3wI/AAAAAAAAAU8/UQ-TVDeVZI4/w72-h72-p-k-no-nu/PARLENDA+001.jpg
216.58.207.238301 Moved Permanently 306 B URL HTTP/1.1 bp3.blogger.com/_JBLExmx6Nw8/SH957aMV3wI/AAAAAAAAAU8/UQ-TVDeVZI4/w72-h72-p-k-no-nu/PARLENDA+001.jpg
IP 216.58.207.238:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 3803182d7c6252287b0b24f63b86cb5d
239ccdd3f0e656eb68dd4da7e0c45c23829f8335
3ab850499545d1ca355812761552c2a00fa12a4d5acc0c20fbaab3bc4588c0ab
GET /_JBLExmx6Nw8/SH957aMV3wI/AAAAAAAAAU8/UQ-TVDeVZI4/w72-h72-p-k-no-nu/PARLENDA+001.jpg HTTP/1.1
Host: bp3.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alfabetizacaoecia.blogspot.com/
HTTP/1.1 301 Moved Permanently
Location: https://1.bp.blogspot.com/_JBLExmx6Nw8/SH957aMV3wI/AAAAAAAAAU8/UQ-TVDeVZI4/w72-h72-p-k-no-nu/PARLENDA+001.jpg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: text/html; charset=UTF-8
Date: Thu, 08 Dec 2022 16:20:18 GMT
Expires: Sat, 07 Jan 2023 16:20:18 GMT
Cache-Control: public, max-age=2592000
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 306
X-XSS-Protection: 0
www.blogger.com/static/v1/widgets/3222695235-widgets.js
216.58.207.233200 OK 57 kB URL HTTP/2 www.blogger.com/static/v1/widgets/3222695235-widgets.js
IP 216.58.207.233:0
File type ASCII text, with very long lines (2221)
Hash 9f2f688aec73940034a0266a2a6266da
af9875c8064027204827b311250191c87e55366e
a78a0cfbae13cfc525657e31c2033d5c0281c5fbec2cf3e493ff75a7e097a02a
GET /static/v1/widgets/3222695235-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alfabetizacaoecia.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56718
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Dec 2022 02:14:06 GMT
expires: Thu, 07 Dec 2023 02:14:06 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 07 Dec 2022 00:52:16 GMT
content-type: text/javascript
age: 137172
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
resources.blogblog.com/img/icon18_edit_allbkg.gif
216.58.207.233200 OK 162 B URL HTTP/2 resources.blogblog.com/img/icon18_edit_allbkg.gif
IP 216.58.207.233:0
File type GIF image data, version 89a, 18 x 18\012- data
Hash c991641178ff05adf0d004298b5eafa9
d8f6ce8ecd92b86d49849360f6b81ceb10b4c941
ca9848e6006cfec8f9ffa29433ade8152204bdb95579200831c6dc0f53dff70b
GET /img/icon18_edit_allbkg.gif HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alfabetizacaoecia.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 162
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Dec 2022 14:19:02 GMT
expires: Tue, 13 Dec 2022 14:19:02 GMT
cache-control: public, max-age=604800
last-modified: Tue, 06 Dec 2022 07:54:23 GMT
content-type: image/gif
age: 180076
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/prose/brandjs.js
142.250.74.99200 OK 5.8 kB URL HTTP/2 www.gstatic.com/prose/brandjs.js
IP 142.250.74.99:0
File type ASCII text, with very long lines (1352)
Hash 10aa07ab4f7de5535f4cafe167ca4fa7
6c804574a29f9d8a77ed2823a7879e56dbc42c22
d111484a9bceee10b129b20ebd4ead4639b5d7dd78117522249195fb84db3cf0
GET /prose/brandjs.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://alfabetizacaoecia.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/prose-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="prose-team"
report-to: {"group":"prose-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/prose-team"}]}
content-length: 5807
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Dec 2022 18:10:36 GMT
expires: Thu, 08 Dec 2022 18:10:36 GMT
cache-control: public, max-age=86400
age: 79782
last-modified: Tue, 06 Apr 2021 15:14:29 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bp1.blogger.com/_JBLExmx6Nw8/SG6cFaAww7I/AAAAAAAAAQE/RAW6WZbZSTE/w72-h72-p-k-no-nu/adorei_sua_visitinha.jpg
216.58.207.238301 Moved Permanently 314 B URL HTTP/1.1 bp1.blogger.com/_JBLExmx6Nw8/SG6cFaAww7I/AAAAAAAAAQE/RAW6WZbZSTE/w72-h72-p-k-no-nu/adorei_sua_visitinha.jpg
IP 216.58.207.238:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 413b8637561823c2bf77db0cdd698437
a99b720883346a403f12ca8e3756a215c458e1e9
d4bc07e385476da1127b029a2e111bd07e700b6fb1100551feef9f7f67ad1435
GET /_JBLExmx6Nw8/SG6cFaAww7I/AAAAAAAAAQE/RAW6WZbZSTE/w72-h72-p-k-no-nu/adorei_sua_visitinha.jpg HTTP/1.1
Host: bp1.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alfabetizacaoecia.blogspot.com/
HTTP/1.1 301 Moved Permanently
Location: https://1.bp.blogspot.com/_JBLExmx6Nw8/SG6cFaAww7I/AAAAAAAAAQE/RAW6WZbZSTE/w72-h72-p-k-no-nu/adorei_sua_visitinha.jpg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: text/html; charset=UTF-8
Date: Thu, 08 Dec 2022 16:20:18 GMT
Expires: Sat, 07 Jan 2023 16:20:18 GMT
Cache-Control: public, max-age=2592000
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 314
X-XSS-Protection: 0
pagead2.googlesyndication.com/pagead/js/google_top_exp.js
216.58.207.194200 OK 67 B URL HTTP/1.1 pagead2.googlesyndication.com/pagead/js/google_top_exp.js
IP 216.58.207.194:0
Hash 9bbc3ca32ec951a484589ce0e6b4db73
753d6f6183b33b2dee5dde2208fca91c17f5bb13
b8f16a16d2a7ea39a9cc079fdbe3af7d31393d62a853668bdd549e0a0311cb3c
GET /pagead/js/google_top_exp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alfabetizacaoecia.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 67
X-XSS-Protection: 0
Date: Thu, 08 Dec 2022 14:48:45 GMT
Expires: Thu, 22 Dec 2022 14:48:45 GMT
Cache-Control: public, max-age=1209600
ETag: 13036835877489095579
Content-Type: text/javascript; charset=UTF-8
Age: 5493
bp1.blogger.com/_JBLExmx6Nw8/SG7O6oYzXXI/AAAAAAAAAQk/EfK2W_jniWA/S269/cutecolorskoala12.gif
216.58.207.238301 Moved Permanently 298 B URL HTTP/1.1 bp1.blogger.com/_JBLExmx6Nw8/SG7O6oYzXXI/AAAAAAAAAQk/EfK2W_jniWA/S269/cutecolorskoala12.gif
IP 216.58.207.238:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 59a841b2ab8005612858183c72cd9499
0ac9c0dd78e61a217fd52cb739fe10c28da81855
c1e92ec0e00213935900e91bd8e7d50d0982e8fc6b9cb7a1460da1377be2ca89
GET /_JBLExmx6Nw8/SG7O6oYzXXI/AAAAAAAAAQk/EfK2W_jniWA/S269/cutecolorskoala12.gif HTTP/1.1
Host: bp1.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alfabetizacaoecia.blogspot.com/
HTTP/1.1 301 Moved Permanently
Location: https://1.bp.blogspot.com/_JBLExmx6Nw8/SG7O6oYzXXI/AAAAAAAAAQk/EfK2W_jniWA/S269/cutecolorskoala12.gif
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: text/html; charset=UTF-8
Date: Thu, 08 Dec 2022 16:20:18 GMT
Expires: Sat, 07 Jan 2023 16:20:18 GMT
Cache-Control: public, max-age=2592000
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 298
X-XSS-Protection: 0
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs
142.250.74.78200 OK 58 kB URL HTTP/2 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs
IP 142.250.74.78:0
File type ASCII text, with very long lines (580)
Hash 813b15c3004464f6bd39fd0773b04757
bd2218fe1e647f61132aad70d29cd91fd0416f26
446c6d83404c0fc4bc1ca6e1c0895f9400309185a534b3f4b6d500e668efeadf
GET /_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alfabetizacaoecia.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 57794
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Dec 2022 17:26:49 GMT
expires: Thu, 07 Dec 2023 17:26:49 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 01 Nov 2022 15:24:55 GMT
content-type: text/javascript; charset=UTF-8
age: 82409
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i567.photobucket.com/albums/ss116/Carlosgalante/Untitled-1.gif
143.204.55.73301 Moved Permanently 167 B URL HTTP/1.1 i567.photobucket.com/albums/ss116/Carlosgalante/Untitled-1.gif
IP 143.204.55.73:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /albums/ss116/Carlosgalante/Untitled-1.gif HTTP/1.1
Host: i567.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alfabetizacaoecia.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Thu, 08 Dec 2022 16:20:18 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://i567.photobucket.com/albums/ss116/Carlosgalante/Untitled-1.gif
X-Cache: Redirect from cloudfront
Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 5852gAUQxa0802PC9qlmteiBbHRTVmtgVJdceoyZDra-7CRoA68KZQ==
Vary: Origin
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 4b1c4d797d1d2fef94993a69a7cb423a
d4d0f3b2eccd29dddef0f1ec51309de97c6c05a4
d2f98268392005d93b5bce9c019c360400b09ac369fc8e8cbc1edba7ed6d929d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 16:20:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bp2.blogger.com/_JBLExmx6Nw8/SGvssuyXlgI/AAAAAAAAAOs/ypfq8_cKYQo/S269/cutecolorsschool2.gif
216.58.207.238301 Moved Permanently 298 B URL HTTP/1.1 bp2.blogger.com/_JBLExmx6Nw8/SGvssuyXlgI/AAAAAAAAAOs/ypfq8_cKYQo/S269/cutecolorsschool2.gif
IP 216.58.207.238:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 4a850f3c27c20ffc801171784cb39915
3806fc278cf91e8fbaffcb04c9726dbba8a2ed3b
db127f230323d78197b73abeacd515e9505b451523d3497e44a9feae3fb2b08b
GET /_JBLExmx6Nw8/SGvssuyXlgI/AAAAAAAAAOs/ypfq8_cKYQo/S269/cutecolorsschool2.gif HTTP/1.1
Host: bp2.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alfabetizacaoecia.blogspot.com/
HTTP/1.1 301 Moved Permanently
Location: https://1.bp.blogspot.com/_JBLExmx6Nw8/SGvssuyXlgI/AAAAAAAAAOs/ypfq8_cKYQo/S269/cutecolorsschool2.gif
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: text/html; charset=UTF-8
Date: Thu, 08 Dec 2022 16:20:18 GMT
Expires: Sat, 07 Jan 2023 16:20:18 GMT
Cache-Control: public, max-age=2592000
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 298
X-XSS-Protection: 0
i219.photobucket.com/albums/cc166/recado/glimboo/blogs/0033.jpg
143.204.55.54301 Moved Permanently 167 B URL HTTP/1.1 i219.photobucket.com/albums/cc166/recado/glimboo/blogs/0033.jpg
IP 143.204.55.54:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /albums/cc166/recado/glimboo/blogs/0033.jpg HTTP/1.1
Host: i219.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alfabetizacaoecia.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Thu, 08 Dec 2022 16:20:18 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://i219.photobucket.com/albums/cc166/recado/glimboo/blogs/0033.jpg
X-Cache: Redirect from cloudfront
Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: _awO6ZZZ-xuuBY2y9WLJWIPH2eAknoP4wdN8dOfnQDDSh4ZzUUgoRw==
Vary: Origin
www.blogger.com/dyn-css/authorization.css?targetBlogID=4436191878569932161&zx=850060da-8616-4564-a78e-88eb2327f448
216.58.207.233200 OK 21 B URL HTTP/2 www.blogger.com/dyn-css/authorization.css?targetBlogID=4436191878569932161&zx=850060da-8616-4564-a78e-88eb2327f448
IP 216.58.207.233:0
File type very short file (no magic)
Hash a62e4d501434033d5d177e67d3aafdd0
34f7300c9ed47334cf10826d57af785321e3138b
b0cabcbfed4b1830ab1956efbd2eec32289a968323cb854a47ef98360ed0f522
GET /dyn-css/authorization.css?targetBlogID=4436191878569932161&zx=850060da-8616-4564-a78e-88eb2327f448 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alfabetizacaoecia.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/css; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 08 Dec 2022 16:20:18 GMT
last-modified: Thu, 08 Dec 2022 16:20:18 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a938af990a97b9856e1174d11c72cbf7
b57716fd0ea9a1e9e0a0595ff593f939560c0abf
6ab769333b231097d077edfbc1c3fc9560de5ae9bfeb5b8360dea8b7fadbcb44
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 16:20:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 4b1c4d797d1d2fef94993a69a7cb423a
d4d0f3b2eccd29dddef0f1ec51309de97c6c05a4
d2f98268392005d93b5bce9c019c360400b09ac369fc8e8cbc1edba7ed6d929d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 16:20:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.mundodosgifs.com/bonecasdemassinha/3ddt.gif
172.67.203.250301 Moved Permanently 0 B URL HTTP/1.1 www.mundodosgifs.com/bonecasdemassinha/3ddt.gif
IP 172.67.203.250:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bonecasdemassinha/3ddt.gif HTTP/1.1
Host: www.mundodosgifs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alfabetizacaoecia.blogspot.com/
HTTP/1.1 301 Moved Permanently
Date: Thu, 08 Dec 2022 16:20:18 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Thu, 08 Dec 2022 17:20:18 GMT
Location: https://www.mundodosgifs.com/bonecasdemassinha/3ddt.gif
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AIHa2jUQ1zLsuAlCybJAQOrgAUrFc1RE6uZd447FNmxje07Zud6PK7azE3uxUlbjY2xKLrIH2VEHT5R2cFvhlmXfajKZ%2FIeQF%2FW%2FZ2YCMXD9pArgNQnKUIEB2Cj3evLXIDcvV7AuIg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7766d3dea8e3b518-OSL
alt-svc: h2=":443"; ma=60
www.blogblog.com/1kt/watermark/body_background_birds.png
216.58.207.233200 OK 23 kB URL HTTP/1.1 www.blogblog.com/1kt/watermark/body_background_birds.png
IP 216.58.207.233:0
File type PNG image data, 300 x 300, 2-bit colormap, non-interlaced\012- data
Hash 5cd8cda0e75b359eb8f15dc83b0c5c29
86c99fbb62aadacb3ebd3f948d345b917f65253f
0220dbf46954d4efe2e91d261dd3d40f06e6402c722cc5580129af64bddc58f9
GET /1kt/watermark/body_background_birds.png HTTP/1.1
Host: www.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alfabetizacaoecia.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 22568
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Sat, 03 Dec 2022 22:28:53 GMT
Expires: Sat, 10 Dec 2022 22:28:53 GMT
Cache-Control: public, max-age=604800
Last-Modified: Sat, 03 Dec 2022 21:52:27 GMT
Content-Type: image/png
Age: 409885
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 4a5c2a2d50893431367319c3eb5fd0bc
c076b77d1c599d2711a212258ffd5dc4eca82925
0c98da58e2abb90a770dbd9d97277cd8836fb79fc15aace4a95d1fb5ee4c1db4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 16:20:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0e9eef4ed41ef94e9ea175ad243e294e
b6f83e508270413dabe55e2884b5409ca7978e24
0e741ca8d92717128bca7aed937bca43519a8d20a9d3dd8670da656ad51a695e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 16:20:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Cache-Control, Backoff, Content-Length, Content-Type, Last-Modified, ETag, Expires, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 08 Dec 2022 16:07:55 GMT
age: 743
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6d7737802f93eeb14503d61c77c137bc
fa6861c298d00f879b9f16af4f05470cecfc80af
6b1b9763bcfaeb92a63ad6020651b3745e8279c634eb3505fc9fa875e772af42
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 16:20:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
2.bp.blogspot.com/_JBLExmx6Nw8/SbXAm51LFGI/AAAAAAAABZI/c2pHLdK5bmM/S269/menina2.gif
142.250.74.161200 OK 10 kB URL HTTP/1.1 2.bp.blogspot.com/_JBLExmx6Nw8/SbXAm51LFGI/AAAAAAAABZI/c2pHLdK5bmM/S269/menina2.gif
IP 142.250.74.161:0
File type GIF image data, version 89a, 183 x 248\012- data
Hash 87ec12a74f2a8cc5ac007097f100bb22
ffc608ad146b15911a8aca3a054018755e89b84e
5e1be8b268d79efb0941aa15ff1b4503d97e21a99f97828077d2aaa06798af85
GET /_JBLExmx6Nw8/SbXAm51LFGI/AAAAAAAABZI/c2pHLdK5bmM/S269/menina2.gif HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alfabetizacaoecia.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vc85"
Expires: Fri, 09 Dec 2022 16:20:18 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="menina2.gif"
Content-Type: image/gif
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Thu, 08 Dec 2022 16:20:18 GMT
Server: fife
Content-Length: 10011
X-XSS-Protection: 0
lh3.googleusercontent.com/blogger_img_proxy/ANbyha2RmYMMKImEHrLYxRJx5wwZXgCjY5xtDdU2dOCSG4-wpXG7g9x82uaLoXpAbNhSNgz-RcGDN4HADb_ORgP0KJYd1NLr9gy-rJAyeCNOFG3bE2EpbIx9SMtqgkVy50G7GVZWH1yKxZBtwYmjg08n0mtoMzXJx4A7bPkUSqBswYCp9U9FSx2GVkgLLnSx6-0jaGJ8ho1z4OPx=w72-h72-p-k-no-nu
142.250.74.97200 OK 4.2 kB URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ANbyha2RmYMMKImEHrLYxRJx5wwZXgCjY5xtDdU2dOCSG4-wpXG7g9x82uaLoXpAbNhSNgz-RcGDN4HADb_ORgP0KJYd1NLr9gy-rJAyeCNOFG3bE2EpbIx9SMtqgkVy50G7GVZWH1yKxZBtwYmjg08n0mtoMzXJx4A7bPkUSqBswYCp9U9FSx2GVkgLLnSx6-0jaGJ8ho1z4OPx=w72-h72-p-k-no-nu
IP 142.250.74.97:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 72x72, components 3\012- data
Hash f5bc4637496b26ee401b9e6a2be293d3
a3988008ef14005b3dca3876be46d94e5b832650
d8143382c539c062c6236f29e57aa5ba999127b9f90b793b831bc253e2fde4b6
GET /blogger_img_proxy/ANbyha2RmYMMKImEHrLYxRJx5wwZXgCjY5xtDdU2dOCSG4-wpXG7g9x82uaLoXpAbNhSNgz-RcGDN4HADb_ORgP0KJYd1NLr9gy-rJAyeCNOFG3bE2EpbIx9SMtqgkVy50G7GVZWH1yKxZBtwYmjg08n0mtoMzXJx4A7bPkUSqBswYCp9U9FSx2GVkgLLnSx6-0jaGJ8ho1z4OPx=w72-h72-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alfabetizacaoecia.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
date: Thu, 08 Dec 2022 16:20:18 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 4166
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 07a86cf9d9c8389ebd9c52303c83b27f
fd3524d701bdf111c541b6fc9e038bffcc3b5d6c
de08c944b2cb2671078e452d870757622e286f7214d736ab2c1b1d1c2ab8dcfb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 16:20:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash cb4dd119f7430c320eac60b72355bd8c
e5694c4e08731720fa303127f2f4b2fe5ab9fba9
116e36f240390df2689f722ba0174ff342f7c6ce3a6b91853342c93def2a0825
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 16:20:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/html/r20221130/r20190131/zrt_lookup.html
216.58.211.2200 OK 4.2 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20221130/r20190131/zrt_lookup.html
IP 216.58.211.2:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2579)
Hash 2fb3574102373e2e076cfa2ff90cdf25
d06c985183def975546d6e47ab6369c11dcf7195
e61cbc207f7fc2f429deceff11e7a339a3d9a9574da6d035054eba02ee381345
GET /pagead/html/r20221130/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alfabetizacaoecia.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 4242
x-xss-protection: 0
date: Wed, 07 Dec 2022 16:53:25 GMT
expires: Wed, 21 Dec 2022 16:53:25 GMT
cache-control: public, max-age=1209600
age: 84413
etag: 10353107486223812946
content-type: text/html; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/cse/static/images/1x/en/branding.png
142.250.74.132200 OK 1.4 kB URL HTTP/2 www.google.com/cse/static/images/1x/en/branding.png
IP 142.250.74.132:0
File type PNG image data, 124 x 15, 8-bit/color RGBA, non-interlaced\012- data
Hash 5fa765d6ecd4ddbe72abbac8698fa4b0
468231e63b1ab3ed01a9488f5c981b141a54d024
331b2b1241f1f2a53744bdca867c5b76954d9431970e91f490f64c707fc24a16
GET /cse/static/images/1x/en/branding.png HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alfabetizacaoecia.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/prose-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="prose-team"
report-to: {"group":"prose-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/prose-team"}]}
content-length: 1372
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 21:46:16 GMT
expires: Fri, 01 Dec 2023 21:46:16 GMT
cache-control: public, max-age=31536000
age: 585242
last-modified: Mon, 25 May 2020 08:30:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/managed/js/adsense/m202211290101/show_ads_impl_with_ama_fy2021.js?client=pub-8912840884391592&plah=alfabetizacaoecia.blogspot.com&bust=31071077
216.58.207.194200 OK 120 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/managed/js/adsense/m202211290101/show_ads_impl_with_ama_fy2021.js?client=pub-8912840884391592&plah=alfabetizacaoecia.blogspot.com&bust=31071077
IP 216.58.207.194:0
File type ASCII text, with very long lines (5918)
Size 120 kB (119787 bytes)
Hash d0c05d9afb1f0fc190c85bf4ce333f93
ef255788e1c853b682b06d09d7d6809b05c04371
3edfbef139c9faa5029de846e1b642853588b3e489b060bd064d51366eb0a2bc
GET /pagead/managed/js/adsense/m202211290101/show_ads_impl_with_ama_fy2021.js?client=pub-8912840884391592&plah=alfabetizacaoecia.blogspot.com&bust=31071077 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alfabetizacaoecia.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Thu, 08 Dec 2022 16:20:18 GMT
expires: Thu, 08 Dec 2022 16:20:18 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: text/javascript; charset=UTF-8
etag: 355892318225323087
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 119787
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
2.bp.blogspot.com/_JBLExmx6Nw8/SaGeMNM-IQI/AAAAAAAABTo/_Zld8xkXE2w/s320/MEU+CORPO+%C3%89+ASSIM+001.jpg
142.250.74.161200 OK 21 kB URL HTTP/1.1 2.bp.blogspot.com/_JBLExmx6Nw8/SaGeMNM-IQI/AAAAAAAABTo/_Zld8xkXE2w/s320/MEU+CORPO+%C3%89+ASSIM+001.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 238x320, components 3\012- data
Hash 2356d630537eb357cf847e5cd1bde884
da88f3b916d4b407b6b25bcee8f189a8a52a8d96
2eeac90c9b533ad3a2257b648ae5a11a51ba09abc58dfebe4bfa9ce5e1b0dad7
GET /_JBLExmx6Nw8/SaGeMNM-IQI/AAAAAAAABTo/_Zld8xkXE2w/s320/MEU+CORPO+%C3%89+ASSIM+001.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alfabetizacaoecia.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v53a"
Expires: Fri, 09 Dec 2022 16:20:18 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="MEU CORPO _ ASSIM 001.jpg";filename*=UTF-8''MEU%20CORPO%20%C3%89%20ASSIM%20001.jpg
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Thu, 08 Dec 2022 16:20:18 GMT
Server: fife
Content-Length: 21291
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 061dadcab5b514f0adb9ab6bb3282183
7e4bb8397a4b29392a3ed63b957e5488062a1e13
19f23a13b09536a47646491299b60c18a880bd427fff2d96b29ce46930eef3e3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 16:20:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 061dadcab5b514f0adb9ab6bb3282183
7e4bb8397a4b29392a3ed63b957e5488062a1e13
19f23a13b09536a47646491299b60c18a880bd427fff2d96b29ce46930eef3e3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 16:20:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
servicos.codigofonte.net/contador/log.php?id=82480&d=apple
104.21.37.73403 Forbidden 3.9 kB URL HTTP/1.1 servicos.codigofonte.net/contador/log.php?id=82480&d=apple
IP 104.21.37.73:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (879)
Hash 95dedb98a51f681b634c75f318f1fe9c
d4a0a9d34b9ddc6db1de5f3d79d9d0944b491d9a
776aeda54f64bc79cf9ff424aaae6268cb38fc6c9109d8f18289600d73cc9aaf
GET /contador/log.php?id=82480&d=apple HTTP/1.1
Host: servicos.codigofonte.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alfabetizacaoecia.blogspot.com/
HTTP/1.1 403 Forbidden
Date: Thu, 08 Dec 2022 16:20:18 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
CF-Chl-Bypass: 1
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8ZVkw07HwO%2FTiG7TRuJNic32TCwE9U6ffN0Z05%2Fr6jRGQqJeiZVuMZWkPlgOzkbGwq9JvHsGKyBK8n02hLGWk7c5TpvzXxIXBEnc214uBHLTotEOwzsAHutNbwLHhzsrzbwxnc8fdoZoiU4%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7766d3e01ea4b511-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fd55f4aaaab6ec40bc7dc10252cd819a
a72523f60be265a391fa9edc43e0a93418ad1fd0
bae354b3db14f4fd115311a0c412c9b5e436dd9e0a151afd8b9c18831dd8c2dd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1668
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 16:20:18 GMT
Last-Modified: Thu, 08 Dec 2022 15:52:30 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
3.bp.blogspot.com/_JBLExmx6Nw8/SWzqAwhB5cI/AAAAAAAAAzg/pfYgPB2aAio/S269/cutecolorsre2.gif
142.250.74.161200 OK 16 kB URL HTTP/1.1 3.bp.blogspot.com/_JBLExmx6Nw8/SWzqAwhB5cI/AAAAAAAAAzg/pfYgPB2aAio/S269/cutecolorsre2.gif
IP 142.250.74.161:0
File type GIF image data, version 89a, 209 x 181\012- data
Hash 9e42eb23cb7b5af39c084de3bfddaddd
9c3cd539884b064a3da122e70613169ebdf7c624
198138ac6fa2f35019661a8ea2b08c20a56c43ed5704dd4b7cc0f00c87c278a3
GET /_JBLExmx6Nw8/SWzqAwhB5cI/AAAAAAAAAzg/pfYgPB2aAio/S269/cutecolorsre2.gif HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alfabetizacaoecia.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vc1b"
Expires: Fri, 09 Dec 2022 16:20:18 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="cutecolorsre2.gif"
Content-Type: image/gif
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Thu, 08 Dec 2022 16:20:18 GMT
Server: fife
Content-Length: 15885
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2556512b197b09798af71bea10bb4bbb
23b647aca5f8294ae82fa8cc7e2215ebe3347b60
3b5bd592342d978bcf8919d1a1e2f87295e2e4af5b5b266e6017b7a25725d08d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 16:20:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 07a86cf9d9c8389ebd9c52303c83b27f
fd3524d701bdf111c541b6fc9e038bffcc3b5d6c
de08c944b2cb2671078e452d870757622e286f7214d736ab2c1b1d1c2ab8dcfb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 16:20:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i219.photobucket.com/albums/cc166/recado/glimboo/blogs/0033.jpg
143.204.55.73404 Not Found 7.1 kB URL HTTP/2 i219.photobucket.com/albums/cc166/recado/glimboo/blogs/0033.jpg
IP 143.204.55.73:0
File type PNG image data, 160 x 120, 8-bit/color RGB, non-interlaced\012- data
Hash 49e3fff8262f861c9be74931c8c33d34
a25ea738da2c2737c9eec1fdd76c5c21923f021e
f472388ee6d7eb09b86275ac4a198d40acf2b2083b342ad40838d57d01bb9c50
GET /albums/cc166/recado/glimboo/blogs/0033.jpg HTTP/1.1
Host: i219.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://alfabetizacaoecia.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-type: image/png
content-length: 7092
last-modified: Fri, 20 Dec 2019 23:09:15 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Thu, 08 Dec 2022 14:47:30 GMT
etag: "49e3fff8262f861c9be74931c8c33d34"
x-cache: Error from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: _fGMPIsp7jG3apMPwKK_UJw26-OjQFdPjAdH7jzh2CuBwR_e8ZCjRA==
age: 6197
X-Firefox-Spdy: h2
4.bp.blogspot.com/_JBLExmx6Nw8/SaGeExW1DlI/AAAAAAAABTg/i2ngG7IdsF4/s320/MEU+CORPO+001.jpg
142.250.74.161200 OK 30 kB URL HTTP/1.1 4.bp.blogspot.com/_JBLExmx6Nw8/SaGeExW1DlI/AAAAAAAABTg/i2ngG7IdsF4/s320/MEU+CORPO+001.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 247x320, components 3\012- data
Hash ce8765516b65936893b87406327322dc
adf5089f1ca821acdb8153a4cf68134768b19128
6a74f55e57a8ae2b18f6996132d959828a685ca220c7e552fbfacfbc3d0b3389
GET /_JBLExmx6Nw8/SaGeExW1DlI/AAAAAAAABTg/i2ngG7IdsF4/s320/MEU+CORPO+001.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alfabetizacaoecia.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v538"
Expires: Fri, 09 Dec 2022 16:20:18 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="MEU CORPO 001.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Thu, 08 Dec 2022 16:20:18 GMT
Server: fife
Content-Length: 30210
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash b9083cdf8a3f174763927ae3e9ca3934
1d1ca843e0517b384f693ff52b55fcafc48f9ee7
0f42326e84100eb58e3ac1d2eb5e21f7f0ba3502ddea7f607627a465cc234801
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 16:20:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
4.bp.blogspot.com/_JBLExmx6Nw8/S0no6CCkLOI/AAAAAAAACXI/KPoFOWGfaKQ/S760/ABC.jpg
142.250.74.161200 OK 3.6 kB URL HTTP/1.1 4.bp.blogspot.com/_JBLExmx6Nw8/S0no6CCkLOI/AAAAAAAACXI/KPoFOWGfaKQ/S760/ABC.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 101x131, components 3\012- data
Hash c3f6951a83666e1544d5264a686770d0
6ad45dec472e03c5585097b3ad54940b001c32b5
82003514573056c9a5ae4b2a98fb1dfc5797ebcf422e668d2e2a65d2ce0bd271
GET /_JBLExmx6Nw8/S0no6CCkLOI/AAAAAAAACXI/KPoFOWGfaKQ/S760/ABC.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alfabetizacaoecia.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v972"
Expires: Fri, 09 Dec 2022 16:20:18 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="ABC.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Thu, 08 Dec 2022 16:20:18 GMT
Server: fife
Content-Length: 3612
X-XSS-Protection: 0
4.bp.blogspot.com/_JBLExmx6Nw8/SaGd3Twbd8I/AAAAAAAABTY/DxxsJjymJZI/s320/NOSSO+CORPO+001.jpg
142.250.74.161200 OK 23 kB URL HTTP/1.1 4.bp.blogspot.com/_JBLExmx6Nw8/SaGd3Twbd8I/AAAAAAAABTY/DxxsJjymJZI/s320/NOSSO+CORPO+001.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 245x320, components 3\012- data
Hash 792d056a4191498b76fae7cab68452a1
91d086a4742f79b549f37d9918c27a5ab937e04d
1cfa2d6148ba49558905d277bb767b4aee2f3d3f7e483b6ce84cf8e05ad977a5
GET /_JBLExmx6Nw8/SaGd3Twbd8I/AAAAAAAABTY/DxxsJjymJZI/s320/NOSSO+CORPO+001.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alfabetizacaoecia.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v536"
Expires: Fri, 09 Dec 2022 16:20:18 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="NOSSO CORPO 001.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Thu, 08 Dec 2022 16:20:18 GMT
Server: fife
Content-Length: 22761
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b8d79685682ab0684ebcd9873dc9f1ad
de00fe0fd4b99a98433a0161801244047115d456
42212f48d6d7f7e7fb0a771330dca03001c513a90364a2e5a0b69813ad0bbecf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 16:20:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i567.photobucket.com/albums/ss116/Carlosgalante/Untitled-1.gif
143.204.55.73200 OK 37 kB URL HTTP/2 i567.photobucket.com/albums/ss116/Carlosgalante/Untitled-1.gif
IP 143.204.55.73:0
File type GIF image data, version 89a, 163 x 135\012- data
Hash 7a450b0d63ce5d2797baa7a135df1173
2b757f59a6047aebc703450b36bdc60f0aa2d470
46b2e1f6ee3c7cdc3a17848a382ca71d43c32c1a926a5c4784725bb69b282966
GET /albums/ss116/Carlosgalante/Untitled-1.gif HTTP/1.1
Host: i567.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://alfabetizacaoecia.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 37046
date: Thu, 08 Dec 2022 16:20:18 GMT
cache-control: max-age=31536000, public
content-disposition: inline; filename="Untitled-1.gif"
expires: Fri, 08 Dec 2023 16:20:18 GMT
server: photobucket
x-amzn-trace-id: Root=1-63920ec2-536a97ca0313cf384af56693
x-request-id: QAhAeQtpEUd_I6bb_Qzhb
x-cache: Miss from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: hohsvWcpUHv4FIRE_kYYBwHvl8BLw6zLhJaHMbcGoYNs_WUjcf-EKg==
vary: Accept, Origin
X-Firefox-Spdy: h2
mural.codigofonte.net/exibir.php?id=115036
188.114.97.1403 Forbidden 3.9 kB URL HTTP/1.1 mural.codigofonte.net/exibir.php?id=115036
IP 188.114.97.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (880)
Hash c3370aabd70f258fbf8359cc4e57c853
bbcac5519c86c173cbb643a4d0f8eef0e988c16e
f957b825d733923a8788debdb88bc759aad9cac1e2ed6ad875ce59799e67234c
GET /exibir.php?id=115036 HTTP/1.1
Host: mural.codigofonte.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alfabetizacaoecia.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 403 Forbidden
Date: Thu, 08 Dec 2022 16:20:18 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
CF-Chl-Bypass: 1
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=m%2BGNNAva0AeL31L2okU7TQjVVvxM5280Bm%2B4%2FXVKLAgUhMxp8aUidBzEsvvux%2Fp35ySQx2%2BErMLo6zFKnZcdY6weROx5UpzBJmBk2KfBQCXkbAScE3tAfhM27qxpZ%2B6bjd53P3htNqc%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7766d3e0fb48b50c-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9badcebebd375f0413b29c8c5032dd2a
75dadf9bb572eaf134aac12ef79b238554e95b9d
cb96b8c1acf1ba5cf0c31768f892eeed3cc2f7f0051c3879a0c3677feceb2fdb
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "CB96B8C1ACF1BA5CF0C31768F892EEED3CC2F7F0051C3879A0C3677FECEB2FDB"
Last-Modified: Wed, 07 Dec 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4959
Expires: Thu, 08 Dec 2022 17:42:57 GMT
Date: Thu, 08 Dec 2022 16:20:18 GMT
Connection: keep-alive
accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D4436191878569932161%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMzMTAwY2MqC3RyYW5zcGFyZW50MgcjMDAwMDAwOgcjMDAwMDAwQgcjMzEwMGNjSgcjOTkwMGZmUgcjMzEwMGNjWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://alfabetizacaoecia.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D4436191878569932161%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMzMTAwY2MqC3RyYW5zcGFyZW50MgcjMDAwMDAwOgcjMDAwMDAwQgcjMzEwMGNjSgcjOTkwMGZmUgcjMzEwMGNjWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://alfabetizacaoecia.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&go=true
142.250.74.109302 Found 477 B URL HTTP/2 accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D4436191878569932161%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMzMTAwY2MqC3RyYW5zcGFyZW50MgcjMDAwMDAwOgcjMDAwMDAwQgcjMzEwMGNjSgcjOTkwMGZmUgcjMzEwMGNjWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://alfabetizacaoecia.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D4436191878569932161%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMzMTAwY2MqC3RyYW5zcGFyZW50MgcjMDAwMDAwOgcjMDAwMDAwQgcjMzEwMGNjSgcjOTkwMGZmUgcjMzEwMGNjWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://alfabetizacaoecia.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&go=true
IP 142.250.74.109:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (521)
Hash bcfe475ef68fa8f3092f60593a778fdf
d65cf87468d1a5a1aa2a219d9404d46618a6d721
0e9f06c3a7a4c6a355724e4492da695afe5e03b1295e736ee0827bbc963f0507
GET /ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D4436191878569932161%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMzMTAwY2MqC3RyYW5zcGFyZW50MgcjMDAwMDAwOgcjMDAwMDAwQgcjMzEwMGNjSgcjOTkwMGZmUgcjMzEwMGNjWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://alfabetizacaoecia.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D4436191878569932161%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMzMTAwY2MqC3RyYW5zcGFyZW50MgcjMDAwMDAwOgcjMDAwMDAwQgcjMzEwMGNjSgcjOTkwMGZmUgcjMzEwMGNjWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://alfabetizacaoecia.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&go=true HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://alfabetizacaoecia.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 08 Dec 2022 16:20:18 GMT
location: https://www.blogger.com/followers.g?blogID=4436191878569932161&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMzMTAwY2MqC3RyYW5zcGFyZW50MgcjMDAwMDAwOgcjMDAwMDAwQgcjMzEwMGNjSgcjOTkwMGZmUgcjMzEwMGNjWgt0cmFuc3BhcmVudA%3D%3D&pageSize=21&origin=http%3A%2F%2Falfabetizacaoecia.blogspot.com%2F&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__&bpli=1
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
content-security-policy: script-src 'nonce-Q5K4jeJ7zpApoUnnyvUU_Q' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport, require-trusted-types-for 'script';report-uri /cspreport
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 477
server: GSE
set-cookie: __Host-GAPS=1:bmjXdImqvKpyaVXwHfLdUcjnprC3Rw:tQkvt8n8p5HACqRz;Path=/;Expires=Sat, 07-Dec-2024 16:20:18 GMT;Secure;HttpOnly;Priority=HIGH
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
2.bp.blogspot.com/_JBLExmx6Nw8/SaGduzAXqWI/AAAAAAAABTQ/sAz5JOyFJwM/s320/CRUZADINHA+001.jpg
142.250.74.161200 OK 29 kB URL HTTP/1.1 2.bp.blogspot.com/_JBLExmx6Nw8/SaGduzAXqWI/AAAAAAAABTQ/sAz5JOyFJwM/s320/CRUZADINHA+001.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 229x320, components 3\012- data
Hash 70248fafadce4165288885fc849d96a3
fd53d7493b5a4f59ae4f609e01833c7588d76333
1a074e4a78334a263a7a0617bef9b1e2a27b244fce3e2e1c979c9b3911419a37
GET /_JBLExmx6Nw8/SaGduzAXqWI/AAAAAAAABTQ/sAz5JOyFJwM/s320/CRUZADINHA+001.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alfabetizacaoecia.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v534"
Expires: Fri, 09 Dec 2022 16:20:18 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="CRUZADINHA 001.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Thu, 08 Dec 2022 16:20:18 GMT
Server: fife
Content-Length: 29014
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8129d4d0ebab3efc528f57883dfb30ba
be557eee6cd854421ec872673041867c73369fa2
ed95fb60948c81a74657e5964798a07145fe91fee47cb270006f62294a5670b1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 16:20:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 18cc322e73c8b494d8f43b0922588f04
e328ef83b8b4735aa93cd68ab1eb850f16c10c81
4f8f8fa8fd32fb03501eedd8474a922a448744d0464844314923ba1672c995bd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 16:20:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash b9083cdf8a3f174763927ae3e9ca3934
1d1ca843e0517b384f693ff52b55fcafc48f9ee7
0f42326e84100eb58e3ac1d2eb5e21f7f0ba3502ddea7f607627a465cc234801
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 16:20:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9badcebebd375f0413b29c8c5032dd2a
75dadf9bb572eaf134aac12ef79b238554e95b9d
cb96b8c1acf1ba5cf0c31768f892eeed3cc2f7f0051c3879a0c3677feceb2fdb
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "CB96B8C1ACF1BA5CF0C31768F892EEED3CC2F7F0051C3879A0C3677FECEB2FDB"
Last-Modified: Wed, 07 Dec 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4959
Expires: Thu, 08 Dec 2022 17:42:57 GMT
Date: Thu, 08 Dec 2022 16:20:18 GMT
Connection: keep-alive
adservice.google.no/adsid/integrator.js?domain=alfabetizacaoecia.blogspot.com
142.250.74.66200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=alfabetizacaoecia.blogspot.com
IP 142.250.74.66:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=alfabetizacaoecia.blogspot.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alfabetizacaoecia.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Thu, 08 Dec 2022 16:20:18 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
partner.googleadservices.com/gampad/cookie.js?domain=alfabetizacaoecia.blogspot.com&callback=_gfp_s_&client=ca-pub-8912840884391592&gpid_exp=1
216.58.207.226200 OK 250 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=alfabetizacaoecia.blogspot.com&callback=_gfp_s_&client=ca-pub-8912840884391592&gpid_exp=1
IP 216.58.207.226:0
File type ASCII text, with very long lines (391), with no line terminators
Hash c697bab623f84d340db929a034f8c51d
e36cdd20f0d8041830080b5aeeced2987401d89b
0abfa2c0db1e9880fc2fc9a1363645385d6fb88c7f933ccf0b32b54cb377975d
GET /gampad/cookie.js?domain=alfabetizacaoecia.blogspot.com&callback=_gfp_s_&client=ca-pub-8912840884391592&gpid_exp=1 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alfabetizacaoecia.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Thu, 08 Dec 2022 16:20:18 GMT
server: cafe
cache-control: private
content-length: 250
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=alfabetizacaoecia.blogspot.com
142.250.74.130200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=alfabetizacaoecia.blogspot.com
IP 142.250.74.130:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=alfabetizacaoecia.blogspot.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alfabetizacaoecia.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Thu, 08 Dec 2022 16:20:18 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
push.services.mozilla.com/
44.228.207.167101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.228.207.167:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: oBwfTbCTo6guMoLIrTH8rA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 0vJYE049qewdNZ+htGuyYUBenKE=
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8129d4d0ebab3efc528f57883dfb30ba
be557eee6cd854421ec872673041867c73369fa2
ed95fb60948c81a74657e5964798a07145fe91fee47cb270006f62294a5670b1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 16:20:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
1.bp.blogspot.com/_JBLExmx6Nw8/SG6cFaAww7I/AAAAAAAAAQE/RAW6WZbZSTE/w72-h72-p-k-no-nu/adorei_sua_visitinha.jpg
142.250.74.161200 OK 4.2 kB URL HTTP/2 1.bp.blogspot.com/_JBLExmx6Nw8/SG6cFaAww7I/AAAAAAAAAQE/RAW6WZbZSTE/w72-h72-p-k-no-nu/adorei_sua_visitinha.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash b6974af72bb7898100e7c3a4211c09ab
900fb9ad70003331c8062aa2a0b14550c0a1c958
6c0f011161e6eea9d917e8275523e08933f51ca4322f29470f3d4a8bdf092eaa
GET /_JBLExmx6Nw8/SG6cFaAww7I/AAAAAAAAAQE/RAW6WZbZSTE/w72-h72-p-k-no-nu/adorei_sua_visitinha.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://alfabetizacaoecia.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v101"
expires: Fri, 09 Dec 2022 16:20:18 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="adorei_sua_visitinha.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Thu, 08 Dec 2022 16:20:18 GMT
server: fife
content-length: 4213
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 18cc322e73c8b494d8f43b0922588f04
e328ef83b8b4735aa93cd68ab1eb850f16c10c81
4f8f8fa8fd32fb03501eedd8474a922a448744d0464844314923ba1672c995bd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 16:20:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 061dadcab5b514f0adb9ab6bb3282183
7e4bb8397a4b29392a3ed63b957e5488062a1e13
19f23a13b09536a47646491299b60c18a880bd427fff2d96b29ce46930eef3e3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 16:20:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
1.bp.blogspot.com/_JBLExmx6Nw8/SG7O6oYzXXI/AAAAAAAAAQk/EfK2W_jniWA/S269/cutecolorskoala12.gif
142.250.74.161200 OK 17 kB URL HTTP/2 1.bp.blogspot.com/_JBLExmx6Nw8/SG7O6oYzXXI/AAAAAAAAAQk/EfK2W_jniWA/S269/cutecolorskoala12.gif
IP 142.250.74.161:0
File type GIF image data, version 89a, 269 x 125\012- data
Hash 36175859b5f22a2f2f4234d632545a8a
9ab961d38b08e19e5996a97d8993473dc98bec86
510b19e2865d03d4fa3a50e487e68bb9afa20bb2217e1c4d8da0ffbad1ab8cca
GET /_JBLExmx6Nw8/SG7O6oYzXXI/AAAAAAAAAQk/EfK2W_jniWA/S269/cutecolorskoala12.gif HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://alfabetizacaoecia.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "vc44"
expires: Fri, 09 Dec 2022 16:20:18 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="cutecolorskoala12.gif"
content-type: image/gif
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Thu, 08 Dec 2022 16:20:18 GMT
server: fife
content-length: 16819
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
1.bp.blogspot.com/_JBLExmx6Nw8/SGvssuyXlgI/AAAAAAAAAOs/ypfq8_cKYQo/S269/cutecolorsschool2.gif
142.250.74.161200 OK 20 kB URL HTTP/2 1.bp.blogspot.com/_JBLExmx6Nw8/SGvssuyXlgI/AAAAAAAAAOs/ypfq8_cKYQo/S269/cutecolorsschool2.gif
IP 142.250.74.161:0
File type GIF image data, version 89a, 269 x 166\012- data
Hash 7b5c119ddc4941773e812a9d61c111ce
9942d3764c472fb156bccf4a2b1eb6fd4f1637f7
c1df070e53563f6be6ff79ca2c9884bd7061d83906f65c015c4280770485657a
GET /_JBLExmx6Nw8/SGvssuyXlgI/AAAAAAAAAOs/ypfq8_cKYQo/S269/cutecolorsschool2.gif HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://alfabetizacaoecia.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "vc00"
expires: Fri, 09 Dec 2022 16:20:19 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="cutecolorsschool2.gif"
content-type: image/gif
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Thu, 08 Dec 2022 16:20:19 GMT
server: fife
content-length: 20482
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
1.bp.blogspot.com/_JBLExmx6Nw8/SH957aMV3wI/AAAAAAAAAU8/UQ-TVDeVZI4/w72-h72-p-k-no-nu/PARLENDA+001.jpg
142.250.74.161200 OK 1.6 kB URL HTTP/2 1.bp.blogspot.com/_JBLExmx6Nw8/SH957aMV3wI/AAAAAAAAAU8/UQ-TVDeVZI4/w72-h72-p-k-no-nu/PARLENDA+001.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash e11dec0757c7b4a97cfbe00290ed14d5
2ceee29f0cb9324182aa2c4a6c13509d3ee73525
9b1604bc1f8d22888ee04f4e4f36fd3db4d29ba2aaa1d22d9a7b70c6cd5b557a
GET /_JBLExmx6Nw8/SH957aMV3wI/AAAAAAAAAU8/UQ-TVDeVZI4/w72-h72-p-k-no-nu/PARLENDA+001.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://alfabetizacaoecia.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v14f"
expires: Fri, 09 Dec 2022 16:20:19 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="PARLENDA 001.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Thu, 08 Dec 2022 16:20:19 GMT
server: fife
content-length: 1628
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
calgot.net/js/blog_uro3.js
120.136.10.16200 OK 788 B URL HTTP/1.1 calgot.net/js/blog_uro3.js
IP 120.136.10.16:0
File type HTML document, Non-ISO extended-ASCII text, with very long lines (356), with CRLF line terminators
Hash 3d58d6d9d406197bbbe9ef5f121d24d8
d371507da507e864f945a185a307f7bf967a2af4
fffac40bfda3c4322e1ab3eb87932c616818ab681c2527ce524fefbdcd6e1d6f
GET /js/blog_uro3.js HTTP/1.1
Host: calgot.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alfabetizacaoecia.blogspot.com/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 08 Dec 2022 16:20:18 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 21 Jul 2014 14:18:04 GMT
ETag: W/"691-4feb4c6757f00"
Content-Encoding: gzip
www.mundodosgifs.com/bonecasdemassinha/3ddt.gif
172.67.203.250403 Forbidden 5.1 kB URL HTTP/2 www.mundodosgifs.com/bonecasdemassinha/3ddt.gif
IP 172.67.203.250:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2136)
Hash fa94a1518648c066f1541d4c20ed4a61
1837d7ba2312820cb6158d9f71c61b40b6d33f38
b9ae483d33a8ad26db438d45c28f84d0fb4aae88a1b65e546e5307efab18ff23
GET /bonecasdemassinha/3ddt.gif HTTP/1.1
Host: www.mundodosgifs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://alfabetizacaoecia.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
date: Thu, 08 Dec 2022 16:20:18 GMT
content-type: text/html; charset=UTF-8
cf-chl-bypass: 1
permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
x-frame-options: SAMEORIGIN
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qTzmhfibOiR2NyT52KRRsKcbLu4s8ROt4EwOWhP5d7Ye3l45c9HEKOgLMTlTXUpS0hpuUYi%2F4ZKWXNV2c%2FJPT6xUSYtDRfB2sDoqm24At4KBRh4RHHUk34v1%2FTEuSihRoF%2FwS%2B%2FkmQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7766d3e14b94b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 090c0d90762a09ad645f2c83d39d1678
703e7261f071d6ab7c85a28b78b8372ebb46d154
158e9b3ad4f84a9e4c47fea31495a9e6b5c024f2a3019f9766c78b1cd6b4d183
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 16:20:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/pagead/js/r20221206/r20110914/client/qs_click_protection_fy2021.js
216.58.211.1200 OK 7.5 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20221206/r20110914/client/qs_click_protection_fy2021.js
IP 216.58.211.1:0
File type ASCII text, with very long lines (1542)
Hash 6f59900fa87e133bae329372aebefe36
260937d2934233c07b112f3564ec9eca7b529fd7
156c12ec7d6973b5742504716567b70740dd66bee9cc0e1a1608df56e77011fd
GET /pagead/js/r20221206/r20110914/client/qs_click_protection_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 7480
x-xss-protection: 0
date: Wed, 07 Dec 2022 18:31:16 GMT
expires: Wed, 21 Dec 2022 18:31:16 GMT
cache-control: public, max-age=1209600
age: 78543
etag: 15631949847000551034
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/pagead/js/r20221206/r20110914/client/window_focus_fy2021.js
216.58.211.1200 OK 1.2 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20221206/r20110914/client/window_focus_fy2021.js
IP 216.58.211.1:0
File type ASCII text, with very long lines (1054)
Hash 169edf919beed1ee17c8a752ef12132e
b7fbae15ed7789984ee59618845b914aae37bf3e
2bcf9aebfd80a2558d54f39de59542c3df52610616fb2e4380d9f3d976cc13fc
GET /pagead/js/r20221206/r20110914/client/window_focus_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1236
x-xss-protection: 0
date: Wed, 07 Dec 2022 18:31:16 GMT
expires: Wed, 21 Dec 2022 18:31:16 GMT
cache-control: public, max-age=1209600
age: 78543
etag: 15004572836499977866
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
172.217.21.162200 OK 48 kB URL HTTP/2 www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
IP 172.217.21.162:0
File type ASCII text, with very long lines (3501)
Hash 0aea457deb170b60b680d7d723b4a6e2
3acbe700c709c2c5c07d6fb145ea7b448cc07a90
86c662679bc2508be7e8064c91055a3c5be7db2c24d58e5f27676f35702ba339
GET /activeview/js/current/rx_lidar.js?cache=r20110914 HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/active-view-scs-read-write-acl
cross-origin-opener-policy: same-origin; report-to="active-view-scs-read-write-acl"
report-to: {"group":"active-view-scs-read-write-acl","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/active-view-scs-read-write-acl"}]}
content-length: 47725
date: Thu, 08 Dec 2022 16:20:19 GMT
expires: Thu, 08 Dec 2022 16:20:19 GMT
cache-control: private, max-age=3000
etag: "1670417373259609"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash b991a259d1f5ed59f771c6717d37d319
3d27e198a13a8b503653a55c7dff4502fde93b4f
943d09ffc57eaa5f8786fe4877c949ab50ba5fb001ca4901a05d5eab57536716
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6586
Cache-Control: max-age=117766
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 16:20:19 GMT
Etag: "63911e10-139"
Expires: Sat, 10 Dec 2022 01:03:05 GMT
Last-Modified: Wed, 07 Dec 2022 23:13:20 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash b991a259d1f5ed59f771c6717d37d319
3d27e198a13a8b503653a55c7dff4502fde93b4f
943d09ffc57eaa5f8786fe4877c949ab50ba5fb001ca4901a05d5eab57536716
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6586
Cache-Control: max-age=117766
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 16:20:19 GMT
Etag: "63911e10-139"
Expires: Sat, 10 Dec 2022 01:03:05 GMT
Last-Modified: Wed, 07 Dec 2022 23:13:20 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 313
ads.eu.criteo.com/delivery/r/afr.php?z=Y5IOwgAN3XIDogmaAAqhWoxinochcwwRYjO3rQ&u=%7CgFnABsbcgW9XD454AtVAclWvooYTeSpIZZi4U6NRQjY%3D%7C&c1=jWCgqsKSUoV3SMf7iUfSyN9Zdtl6nAKbFqSqspWYQC9xOVhUoU3KHrt8RCBjLG-FmsP6T4c8_8Qyj-rr9fqhqmP4FGrG3oA56-2aoT-uIfu6ky9gGPB3MNC78_c1Y1lfFFITCBSYhzoPf8yKKjMwK3tdgshh0-AuTEvJzmvH0hmGXcshPlJoSrHpm9jNMImEFEwSUrdfPn9_dN6Pt00MMvb6C0h271wqprjeHMdUFXyV_fBVp9VUFZN5_P8vOFrnoXB28YdsmbnrD6_-KWHtfJXjfJFpn2pQsprr9FA-tHg_3TXMed8VN-Y8BYoo6X76xSq0y8ey6a_9xrCGjLDbXBvWerizrU2fXvLtAQYtKkF4qQYlVCxwDVD_i3GfB0O2NXS46qKDy73bQgy2mTZpRIhmibFSG2GkXiqRXejq-jgJS2mGMsX4ccK9jg9TjizEFxu1AbqOthv7kdJDjy8pUtYN1AFVBlpj10H_k_QAS-GLq2KTVbo5qKOFTnJPtZJqK8YDt-XRO0Qs38T5dzhdHFSodzChtl5CIbG3x_uScy8aE1kCV_fwqR2RnhO9ST5rEQ-jHd4VrjAM75uFzmy2bfyevdgA8F-C&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCOvIrwg6SY_K6N5qTiM0P2sKq2AzJntKxXLWY49aTAcCNtwEQASAAYMOEgICYGIIBF2NhLXB1Yi04OTEyODQwODg0MzkxNTkyyAEJqQLd6mv1LaGxPqgDAaoE-gFP0BR-uujXdDVNIDbw4Y1LU5wQK2wUXmj-Qyq900gKhkW9Z7xsm3eg-lYsVUX_OHswkc-EDpkTJmsKcLZjeG3Cwk17vGiLE3-tWQBwNrLmGa_vTEefwMFvTfP3R8wc8YWAqgFMsjR4SpRfXuup0WE4n6iUjga-S1XxWlALm2b-KBEw2QfYU1cXdvF1C7kihEmIoJL5NoahdfthCFSYfgLQfxf5vYAlgrBwwLh6KRd1jj01J9ebao7qk0ZjJToas4AyKN75AAM4akIfE5j0DN4LKxrVGOXx7aqNROc1giKYKvh3zKNMx1Uoqz8xP3H8Q6wVoKu19NmAJofHgAa4mbeW9PiIrtMBoAYhqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_3-WlUbbbbMuEb-goNzFJ-JrYY2Tg%26client%3Dca-pub-8912840884391592%26adurl%3D
178.250.0.138200 OK 46 kB URL HTTP/2 ads.eu.criteo.com/delivery/r/afr.php?z=Y5IOwgAN3XIDogmaAAqhWoxinochcwwRYjO3rQ&u=%7CgFnABsbcgW9XD454AtVAclWvooYTeSpIZZi4U6NRQjY%3D%7C&c1=jWCgqsKSUoV3SMf7iUfSyN9Zdtl6nAKbFqSqspWYQC9xOVhUoU3KHrt8RCBjLG-FmsP6T4c8_8Qyj-rr9fqhqmP4FGrG3oA56-2aoT-uIfu6ky9gGPB3MNC78_c1Y1lfFFITCBSYhzoPf8yKKjMwK3tdgshh0-AuTEvJzmvH0hmGXcshPlJoSrHpm9jNMImEFEwSUrdfPn9_dN6Pt00MMvb6C0h271wqprjeHMdUFXyV_fBVp9VUFZN5_P8vOFrnoXB28YdsmbnrD6_-KWHtfJXjfJFpn2pQsprr9FA-tHg_3TXMed8VN-Y8BYoo6X76xSq0y8ey6a_9xrCGjLDbXBvWerizrU2fXvLtAQYtKkF4qQYlVCxwDVD_i3GfB0O2NXS46qKDy73bQgy2mTZpRIhmibFSG2GkXiqRXejq-jgJS2mGMsX4ccK9jg9TjizEFxu1AbqOthv7kdJDjy8pUtYN1AFVBlpj10H_k_QAS-GLq2KTVbo5qKOFTnJPtZJqK8YDt-XRO0Qs38T5dzhdHFSodzChtl5CIbG3x_uScy8aE1kCV_fwqR2RnhO9ST5rEQ-jHd4VrjAM75uFzmy2bfyevdgA8F-C&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCOvIrwg6SY_K6N5qTiM0P2sKq2AzJntKxXLWY49aTAcCNtwEQASAAYMOEgICYGIIBF2NhLXB1Yi04OTEyODQwODg0MzkxNTkyyAEJqQLd6mv1LaGxPqgDAaoE-gFP0BR-uujXdDVNIDbw4Y1LU5wQK2wUXmj-Qyq900gKhkW9Z7xsm3eg-lYsVUX_OHswkc-EDpkTJmsKcLZjeG3Cwk17vGiLE3-tWQBwNrLmGa_vTEefwMFvTfP3R8wc8YWAqgFMsjR4SpRfXuup0WE4n6iUjga-S1XxWlALm2b-KBEw2QfYU1cXdvF1C7kihEmIoJL5NoahdfthCFSYfgLQfxf5vYAlgrBwwLh6KRd1jj01J9ebao7qk0ZjJToas4AyKN75AAM4akIfE5j0DN4LKxrVGOXx7aqNROc1giKYKvh3zKNMx1Uoqz8xP3H8Q6wVoKu19NmAJofHgAa4mbeW9PiIrtMBoAYhqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_3-WlUbbbbMuEb-goNzFJ-JrYY2Tg%26client%3Dca-pub-8912840884391592%26adurl%3D
IP 178.250.0.138:0
Hash 5fa5403231722b8e4af095a097b4fd92
91f45750509769f89bbcf7df3893f2520c356585
38d33df4b3a24ebd77fd5cc4cfb52e0e889b506b16d8bd9155accb384f9cc19b
GET /delivery/r/afr.php?z=Y5IOwgAN3XIDogmaAAqhWoxinochcwwRYjO3rQ&u=%7CgFnABsbcgW9XD454AtVAclWvooYTeSpIZZi4U6NRQjY%3D%7C&c1=jWCgqsKSUoV3SMf7iUfSyN9Zdtl6nAKbFqSqspWYQC9xOVhUoU3KHrt8RCBjLG-FmsP6T4c8_8Qyj-rr9fqhqmP4FGrG3oA56-2aoT-uIfu6ky9gGPB3MNC78_c1Y1lfFFITCBSYhzoPf8yKKjMwK3tdgshh0-AuTEvJzmvH0hmGXcshPlJoSrHpm9jNMImEFEwSUrdfPn9_dN6Pt00MMvb6C0h271wqprjeHMdUFXyV_fBVp9VUFZN5_P8vOFrnoXB28YdsmbnrD6_-KWHtfJXjfJFpn2pQsprr9FA-tHg_3TXMed8VN-Y8BYoo6X76xSq0y8ey6a_9xrCGjLDbXBvWerizrU2fXvLtAQYtKkF4qQYlVCxwDVD_i3GfB0O2NXS46qKDy73bQgy2mTZpRIhmibFSG2GkXiqRXejq-jgJS2mGMsX4ccK9jg9TjizEFxu1AbqOthv7kdJDjy8pUtYN1AFVBlpj10H_k_QAS-GLq2KTVbo5qKOFTnJPtZJqK8YDt-XRO0Qs38T5dzhdHFSodzChtl5CIbG3x_uScy8aE1kCV_fwqR2RnhO9ST5rEQ-jHd4VrjAM75uFzmy2bfyevdgA8F-C&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCOvIrwg6SY_K6N5qTiM0P2sKq2AzJntKxXLWY49aTAcCNtwEQASAAYMOEgICYGIIBF2NhLXB1Yi04OTEyODQwODg0MzkxNTkyyAEJqQLd6mv1LaGxPqgDAaoE-gFP0BR-uujXdDVNIDbw4Y1LU5wQK2wUXmj-Qyq900gKhkW9Z7xsm3eg-lYsVUX_OHswkc-EDpkTJmsKcLZjeG3Cwk17vGiLE3-tWQBwNrLmGa_vTEefwMFvTfP3R8wc8YWAqgFMsjR4SpRfXuup0WE4n6iUjga-S1XxWlALm2b-KBEw2QfYU1cXdvF1C7kihEmIoJL5NoahdfthCFSYfgLQfxf5vYAlgrBwwLh6KRd1jj01J9ebao7qk0ZjJToas4AyKN75AAM4akIfE5j0DN4LKxrVGOXx7aqNROc1giKYKvh3zKNMx1Uoqz8xP3H8Q6wVoKu19NmAJofHgAa4mbeW9PiIrtMBoAYhqAemvhuoB5bYG6gHqpuxAqgH_56xAqgH35-xAtgHANIIDwiA4YBwEAEyAusCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_3-WlUbbbbMuEb-goNzFJ-JrYY2Tg%26client%3Dca-pub-8912840884391592%26adurl%3D HTTP/1.1
Host: ads.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Dec 2022 16:20:18 GMT
content-type: text/html
server: Kestrel
cache-control: private, max-age=0, no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-max-age: 1000
cross-origin-resource-policy: cross-origin
p3p: CP='CUR ADM OUR NOR STA NID'
report-to: {"endpoints":[{"url":"https://csm.eu.criteo.net/heavyad?cppv=3&cpp=ROsmJfv7m2yglmhsRZPS5Qw95vi4saTjRthPbn-lZT0AcZcQD3OahLBs4FtvibEAJYKz8Paz0CGFu_qoFCJYmpUROVs76at66mMkSAdH_abJfJlVnnle0NiVlZm37S_VfdPeRt771WakTzT1AGEU3beFpNEt9YqUe4lZgvq6HOp5m-HcSPVG-CZabk69bnMpp1EGIjrAh_nxrjlxrhhRmf0fCn9L_v_dkBSuWcPscvx0ltNg5p_tj1mTSXuCV28_12LbjQ"}], "max_age": 86400}
link: <pix.eu.criteo.net>; rel=preconnect; crossorigin, <static.criteo.net>; rel=preconnect; crossorigin
server-processing-duration-in-ticks: 80843374
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 518bf2ed51b00f8f798831d424dadf44
82ef1b85e2721fbcdc58cf54f55e827e7e6d7492
35b5e785c53e5e9a4be75c4086777542da459649bcd0c596a7918c0cd70ef661
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5790
Cache-Control: max-age=168789
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 16:20:19 GMT
Etag: "6391e87a-139"
Expires: Sat, 10 Dec 2022 15:13:28 GMT
Last-Modified: Thu, 08 Dec 2022 13:36:58 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 313
cdnjs.cloudflare.com/ajax/libs/webfont/1.6.28/webfontloader.js
104.17.25.14200 OK 4.4 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/webfont/1.6.28/webfontloader.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (2171)
Hash 44c72b9bddfecacc9114e84d685dd085
38f3ff57b9b64a38fc2153eb30564b7fc1c86349
c82afd4f2d89288b4b79244f0c24264810b11326670710ac8e28e7bfc87c7991
GET /ajax/libs/webfont/1.6.28/webfontloader.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Dec 2022 16:20:19 GMT
content-type: application/javascript; charset=utf-8
content-length: 4420
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb04030-30d9"
last-modified: Mon, 04 May 2020 16:17:52 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 82225
expires: Tue, 28 Nov 2023 16:20:19 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gJcIEVPeYJXkt6NZ5JyNyBGqC6fSq3aDNI25maS6YnOhtJ3hRDnf41GeHjEVmgPSEAtmDZqZbMw0AAEXQ9mBFOzyoCEAqoSOS4nhK8RVl64PH9L8UQzIDFbGm5FnyO6fcTG4Kig1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7766d3e62c641bfe-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash bc97b26376f5787bfa0a6fdfb759e5ce
9561aece4fb95ccfebf881ead6d424ff2854d341
9fd160380e77f1017d5f2c0af94d05ca84977e4d4b42f6fd385a815fbf672556
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3832
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 16:20:19 GMT
Last-Modified: Thu, 08 Dec 2022 15:16:27 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 313
rtb.nl.eu.criteo.com/google/auction/notify?profile=14&payload=kKnZE7OzWY4C2ASdg2ICAgAAAG5BWlXEFiYgEMIOkmNHh1fyG9xQ36fP1QASAAA&wp=Y5IOwgAOEVYKGOCMAAO-7uWBiFcg_JJz5KRuQA
178.250.2.129200 OK 0 B URL HTTP/2 rtb.nl.eu.criteo.com/google/auction/notify?profile=14&payload=kKnZE7OzWY4C2ASdg2ICAgAAAG5BWlXEFiYgEMIOkmNHh1fyG9xQ36fP1QASAAA&wp=Y5IOwgAOEVYKGOCMAAO-7uWBiFcg_JJz5KRuQA
IP 178.250.2.129:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /google/auction/notify?profile=14&payload=kKnZE7OzWY4C2ASdg2ICAgAAAG5BWlXEFiYgEMIOkmNHh1fyG9xQ36fP1QASAAA&wp=Y5IOwgAOEVYKGOCMAAO-7uWBiFcg_JJz5KRuQA HTTP/1.1
Host: rtb.nl.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server-processing-duration-in-ticks: 287344
date: Thu, 08 Dec 2022 16:20:18 GMT
server: Kestrel
content-length: 0
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
rtb.nl.eu.criteo.com/google/auction/notify?profile=14&payload=kLnPC7OzWawHmAKdg2ICAgAAAG5BWlXEFiYgEMIOkmMB7SFWIrZRyhLQvwASAAA&wp=Y5IOwgAN3XIDogmaAAqhWoxinochcwwRYjO3rQ
178.250.2.129200 OK 0 B URL HTTP/2 rtb.nl.eu.criteo.com/google/auction/notify?profile=14&payload=kLnPC7OzWawHmAKdg2ICAgAAAG5BWlXEFiYgEMIOkmMB7SFWIrZRyhLQvwASAAA&wp=Y5IOwgAN3XIDogmaAAqhWoxinochcwwRYjO3rQ
IP 178.250.2.129:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /google/auction/notify?profile=14&payload=kLnPC7OzWawHmAKdg2ICAgAAAG5BWlXEFiYgEMIOkmMB7SFWIrZRyhLQvwASAAA&wp=Y5IOwgAN3XIDogmaAAqhWoxinochcwwRYjO3rQ HTTP/1.1
Host: rtb.nl.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server-processing-duration-in-ticks: 301886
date: Thu, 08 Dec 2022 16:20:19 GMT
server: Kestrel
content-length: 0
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
rtb.fr.eu.criteo.com/google/auction/notify?profile=14&payload=kKnZE7OzWY4C2ASdg2ICAgAAAG5BWlXEFiYgEMIOkmP8uwbqq54fhWC6PQASAAA&wp=Y5IOwgAN-aoKGL-MAAvf6x8WbRtKqYDMt8PCRQ
178.250.0.129200 OK 0 B URL HTTP/2 rtb.fr.eu.criteo.com/google/auction/notify?profile=14&payload=kKnZE7OzWY4C2ASdg2ICAgAAAG5BWlXEFiYgEMIOkmP8uwbqq54fhWC6PQASAAA&wp=Y5IOwgAN-aoKGL-MAAvf6x8WbRtKqYDMt8PCRQ
IP 178.250.0.129:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /google/auction/notify?profile=14&payload=kKnZE7OzWY4C2ASdg2ICAgAAAG5BWlXEFiYgEMIOkmP8uwbqq54fhWC6PQASAAA&wp=Y5IOwgAN-aoKGL-MAAvf6x8WbRtKqYDMt8PCRQ HTTP/1.1
Host: rtb.fr.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server-processing-duration-in-ticks: 266029
date: Thu, 08 Dec 2022 16:20:19 GMT
server: Kestrel
content-length: 0
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 80bc0f96ea96fde678243ff6ac1a2b22
09f6a7dd77cae8777a0a105926f6f8a38635d5a4
fa517d4d2dd08a6bdc676d703e216ba5b48fc658698bc628961854dbd25dbdc5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1417
Cache-Control: max-age=107159
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 16:20:19 GMT
Etag: "639108d1-139"
Expires: Fri, 09 Dec 2022 22:06:18 GMT
Last-Modified: Wed, 07 Dec 2022 21:42:41 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 80bc0f96ea96fde678243ff6ac1a2b22
09f6a7dd77cae8777a0a105926f6f8a38635d5a4
fa517d4d2dd08a6bdc676d703e216ba5b48fc658698bc628961854dbd25dbdc5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1412
Cache-Control: max-age=107154
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 16:20:19 GMT
Etag: "639108d1-139"
Expires: Fri, 09 Dec 2022 22:06:13 GMT
Last-Modified: Wed, 07 Dec 2022 21:42:41 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 80bc0f96ea96fde678243ff6ac1a2b22
09f6a7dd77cae8777a0a105926f6f8a38635d5a4
fa517d4d2dd08a6bdc676d703e216ba5b48fc658698bc628961854dbd25dbdc5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1417
Cache-Control: max-age=107159
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 16:20:19 GMT
Etag: "639108d1-139"
Expires: Fri, 09 Dec 2022 22:06:18 GMT
Last-Modified: Wed, 07 Dec 2022 21:42:41 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 80bc0f96ea96fde678243ff6ac1a2b22
09f6a7dd77cae8777a0a105926f6f8a38635d5a4
fa517d4d2dd08a6bdc676d703e216ba5b48fc658698bc628961854dbd25dbdc5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1412
Cache-Control: max-age=107154
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 16:20:19 GMT
Etag: "639108d1-139"
Expires: Fri, 09 Dec 2022 22:06:13 GMT
Last-Modified: Wed, 07 Dec 2022 21:42:41 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 80bc0f96ea96fde678243ff6ac1a2b22
09f6a7dd77cae8777a0a105926f6f8a38635d5a4
fa517d4d2dd08a6bdc676d703e216ba5b48fc658698bc628961854dbd25dbdc5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1417
Cache-Control: max-age=107159
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 16:20:19 GMT
Etag: "639108d1-139"
Expires: Fri, 09 Dec 2022 22:06:18 GMT
Last-Modified: Wed, 07 Dec 2022 21:42:41 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 98f8af26b00325bf9086a697fb7e9931
4393fab2dbe807c5b0323a7f200754ac54a8cd10
7fd58e94c14ad131f33b9b6a962417b051f69e7473131cfd8f380ff80644fbd7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 886
Cache-Control: max-age=156693
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 16:20:19 GMT
Etag: "6391cc62-13a"
Expires: Sat, 10 Dec 2022 11:51:52 GMT
Last-Modified: Thu, 08 Dec 2022 11:37:06 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 314
static.criteo.net/flash/icon/back_button2.svg
178.250.2.130200 OK 293 B URL HTTP/2 static.criteo.net/flash/icon/back_button2.svg
IP 178.250.2.130:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with CRLF line terminators
Hash d9f776bdc698e1bc9c6a1977218019cd
5763cfb5ac79adf0fa7f03a82bad04eea2dca243
725e869434fef8013208ed4c233d29744f9b363f867dcfb8f23e862880fa699a
GET /flash/icon/back_button2.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:20:19 GMT
content-type: image/svg+xml
content-length: 293
last-modified: Thu, 28 Apr 2022 09:09:48 GMT
etag: "626a59dc-125"
expires: Sun, 03 Dec 2023 16:20:19 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 98f8af26b00325bf9086a697fb7e9931
4393fab2dbe807c5b0323a7f200754ac54a8cd10
7fd58e94c14ad131f33b9b6a962417b051f69e7473131cfd8f380ff80644fbd7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 917
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 16:20:19 GMT
Last-Modified: Thu, 08 Dec 2022 16:05:03 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 314
static.criteo.net/flash/icon/close_button.svg
178.250.2.130200 OK 308 B URL HTTP/2 static.criteo.net/flash/icon/close_button.svg
IP 178.250.2.130:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with CRLF line terminators
Hash 1bfe2e290ec4440da74a2e2c249eae2b
0b888a3f9e27d1554f2e21d51e7a1c223d00dbd4
8ec89605fe3d580e9539c7b858e8f69ba4e26fe06377ebe04585397de23a7395
GET /flash/icon/close_button.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:20:19 GMT
content-type: image/svg+xml
content-length: 308
last-modified: Fri, 14 Feb 2020 13:51:32 GMT
etag: "5e46a5e4-134"
expires: Sun, 03 Dec 2023 16:20:19 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 98f8af26b00325bf9086a697fb7e9931
4393fab2dbe807c5b0323a7f200754ac54a8cd10
7fd58e94c14ad131f33b9b6a962417b051f69e7473131cfd8f380ff80644fbd7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 917
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 16:20:19 GMT
Last-Modified: Thu, 08 Dec 2022 16:05:03 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 314
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F7%2F178GR0032Z-0.jpg%3Fcb%3Dfc9fb5bf427d201ca99fff8b4c6f02a3&v=3&w=400&s=QNLkXZfsSvTMFHhU53rXW1-g&b=400
178.250.2.135200 OK 6.6 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F7%2F178GR0032Z-0.jpg%3Fcb%3Dfc9fb5bf427d201ca99fff8b4c6f02a3&v=3&w=400&s=QNLkXZfsSvTMFHhU53rXW1-g&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 173x238, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 318b500e2b854e1f27709570b83b517d
cc53864c3a5784fc5f24c9f50188fc258f0a1e09
04b12bdf47ca28c4b4088444584f2d40ed7209502a3217b9dce22f6e1c8ba62b
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F7%2F178GR0032Z-0.jpg%3Fcb%3Dfc9fb5bf427d201ca99fff8b4c6f02a3&v=3&w=400&s=QNLkXZfsSvTMFHhU53rXW1-g&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=29505374
expires: Wed, 15 Nov 2023 04:16:34 GMT
date: Thu, 08 Dec 2022 16:20:19 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 6598
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 98f8af26b00325bf9086a697fb7e9931
4393fab2dbe807c5b0323a7f200754ac54a8cd10
7fd58e94c14ad131f33b9b6a962417b051f69e7473131cfd8f380ff80644fbd7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 917
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 16:20:19 GMT
Last-Modified: Thu, 08 Dec 2022 16:05:03 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 314
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F5%2F0%2F5034-0.jpg%3Fcb%3D62efeea0293b15c22308baa4152d343b&v=3&w=400&s=j79tIWo1mBu3TVbifc0D5ZJo&b=400
178.250.2.135200 OK 9.3 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F5%2F0%2F5034-0.jpg%3Fcb%3D62efeea0293b15c22308baa4152d343b&v=3&w=400&s=j79tIWo1mBu3TVbifc0D5ZJo&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 230x234, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 5a3629a59a7dfdfeff84a6f3c1bd08ec
5e280d02eab39274ee1e00603d6f6a7c22e46cac
28f0f8f2d4a446213c382b40bf1b6caba2d1549199b2c33ff947c2d2fd24491d
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F5%2F0%2F5034-0.jpg%3Fcb%3D62efeea0293b15c22308baa4152d343b&v=3&w=400&s=j79tIWo1mBu3TVbifc0D5ZJo&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=28918538
expires: Wed, 08 Nov 2023 09:15:58 GMT
date: Thu, 08 Dec 2022 16:20:19 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 9276
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F5%2F3%2F53858-0.jpg%3Fcb%3Df661ebfe7e8461b1aa776d9647b44d74&v=3&w=400&s=WlqqqM3gQfN7Val60TiKVA0k&b=400
178.250.2.135200 OK 5.1 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F5%2F3%2F53858-0.jpg%3Fcb%3Df661ebfe7e8461b1aa776d9647b44d74&v=3&w=400&s=WlqqqM3gQfN7Val60TiKVA0k&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x287, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 5dff790a5bb26782110b9d621212e3b5
0b9bdb39b2fbb7823b6a6b80845206df692e80c2
1eedd2a7f883999396b0c2877a2512186f875339b3e284c34601ebb9a71fb8e0
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F5%2F3%2F53858-0.jpg%3Fcb%3Df661ebfe7e8461b1aa776d9647b44d74&v=3&w=400&s=WlqqqM3gQfN7Val60TiKVA0k&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30362730
expires: Sat, 25 Nov 2023 02:25:49 GMT
date: Thu, 08 Dec 2022 16:20:19 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 5062
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=37478&q=80&r=0&u=https%3A%2F%2Fwww.stormberg.com%2Fglobalassets%2Fproductimages%2F11255790093_1.jpg%3Fref%3D7A65392AD3%26w%3D640%26h%3D914%26cb%3Da79920578c588134e5351edb7077f862&v=3&w=400&s=u6EfOaSCJ3OfkOysXE_5Radw&b=400
178.250.2.135200 OK 6.6 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=37478&q=80&r=0&u=https%3A%2F%2Fwww.stormberg.com%2Fglobalassets%2Fproductimages%2F11255790093_1.jpg%3Fref%3D7A65392AD3%26w%3D640%26h%3D914%26cb%3Da79920578c588134e5351edb7077f862&v=3&w=400&s=u6EfOaSCJ3OfkOysXE_5Radw&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x238, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 2cda2660e817499c432712bbe51bed6c
0d80a8ac1365ebe790a30172c77854a8d8f97589
1066177e9f1f49134b5a949c99e0e8bab79e776fdeea12eecdbfbf8eec9d1841
GET /img/img?c=3&cq=256&h=400&m=0&partner=37478&q=80&r=0&u=https%3A%2F%2Fwww.stormberg.com%2Fglobalassets%2Fproductimages%2F11255790093_1.jpg%3Fref%3D7A65392AD3%26w%3D640%26h%3D914%26cb%3Da79920578c588134e5351edb7077f862&v=3&w=400&s=u6EfOaSCJ3OfkOysXE_5Radw&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=30774145
expires: Wed, 29 Nov 2023 20:42:44 GMT
date: Thu, 08 Dec 2022 16:20:19 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 6600
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F3%2F139200-2.jpg%3Fcb%3Df4bbfffcc691f0d09fed11ab574d2c15&v=3&w=400&s=4WZxUSFQRS2v6inBoec-sxdj&b=400
178.250.2.135200 OK 11 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F3%2F139200-2.jpg%3Fcb%3Df4bbfffcc691f0d09fed11ab574d2c15&v=3&w=400&s=4WZxUSFQRS2v6inBoec-sxdj&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x358, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b4a8b65dd45b5caaf05d7af1a012c211
2d76450cb9247fc5eb904e3d6db3c051c26226ae
bdeedcf8ba166914065e069ca9514b3020cfe22d1239cb8ec86495c301108540
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F3%2F139200-2.jpg%3Fcb%3Df4bbfffcc691f0d09fed11ab574d2c15&v=3&w=400&s=4WZxUSFQRS2v6inBoec-sxdj&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30033480
expires: Tue, 21 Nov 2023 06:58:20 GMT
date: Thu, 08 Dec 2022 16:20:18 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 10926
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F3%2F831689-0.jpg%3Fcb%3D746e2191fd141dce838dd5582b8661be&v=3&w=400&s=GOTZqZqaWRhiofFoHTCV7YXZ&b=400
178.250.2.135200 OK 3.7 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F3%2F831689-0.jpg%3Fcb%3D746e2191fd141dce838dd5582b8661be&v=3&w=400&s=GOTZqZqaWRhiofFoHTCV7YXZ&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 205x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 3682dacb7a94af61dee15aa78045a9a5
abcfe697906b924e5a296a4720d72fc30d5e56b2
c8099a2a55044610080b73376df81d8050a41b3dead8b147381fc523037c9d50
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F3%2F831689-0.jpg%3Fcb%3D746e2191fd141dce838dd5582b8661be&v=3&w=400&s=GOTZqZqaWRhiofFoHTCV7YXZ&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=29265360
expires: Sun, 12 Nov 2023 09:36:20 GMT
date: Thu, 08 Dec 2022 16:20:19 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 3670
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F3%2F5%2F355108-0.jpg%3Fcb%3Df38a9887d70fe8a67810b481f0a291d6&v=3&w=400&s=3kyp--A6M4BubM3eehemnX-I&b=400
178.250.2.135200 OK 8.5 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F3%2F5%2F355108-0.jpg%3Fcb%3Df38a9887d70fe8a67810b481f0a291d6&v=3&w=400&s=3kyp--A6M4BubM3eehemnX-I&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 4467a9ae13171b5f3278e6d2ce727bf2
7a21d7b0cd66f63d7e8b4c66be59f97f3368c44e
17f148460d5036a7ab08c77538b8899d3aa8a5e65c77cbcc51ba01539b1a7d09
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F3%2F5%2F355108-0.jpg%3Fcb%3Df38a9887d70fe8a67810b481f0a291d6&v=3&w=400&s=3kyp--A6M4BubM3eehemnX-I&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=29609711
expires: Thu, 16 Nov 2023 09:15:31 GMT
date: Thu, 08 Dec 2022 16:20:19 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 8504
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F7%2F178GR0017Z-0.jpg%3Fcb%3Dd2275143653c8b6c1a4d350e9a49880d&v=3&w=400&s=X2fi4R7_HgO7rhMaHuYiXxea&b=400
178.250.2.135200 OK 6.9 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F7%2F178GR0017Z-0.jpg%3Fcb%3Dd2275143653c8b6c1a4d350e9a49880d&v=3&w=400&s=X2fi4R7_HgO7rhMaHuYiXxea&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 165x241, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 834be1e94b97b3046f72dc7e1655cbc2
01763b030849d82d7d401131d540ffc118c9e230
0cf7663e5fafa148537e1fd7f65fab5540d4e0a84662b5c71f3c27c26994f289
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F7%2F178GR0017Z-0.jpg%3Fcb%3Dd2275143653c8b6c1a4d350e9a49880d&v=3&w=400&s=X2fi4R7_HgO7rhMaHuYiXxea&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=29515168
expires: Wed, 15 Nov 2023 06:59:48 GMT
date: Thu, 08 Dec 2022 16:20:19 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 6922
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F9%2F199217-0.jpg%3Fcb%3D47dbfbf4f03c12e4fad3262b52cc498f&v=3&w=400&s=YcqZnpJiMDL8Re073WzqKo88&b=400
178.250.2.135200 OK 4.3 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F9%2F199217-0.jpg%3Fcb%3D47dbfbf4f03c12e4fad3262b52cc498f&v=3&w=400&s=YcqZnpJiMDL8Re073WzqKo88&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 274x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d4f5eb42d3a4558a7c995710ff437cb0
1f73d7b42b3e1f5b8754e62b1ff933f2e69f3d1c
c33b7e6d19155abc7f2ad85172e017a537e0cd29f15fc2cce401bb9f87ec2193
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F9%2F199217-0.jpg%3Fcb%3D47dbfbf4f03c12e4fad3262b52cc498f&v=3&w=400&s=YcqZnpJiMDL8Re073WzqKo88&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30991962
expires: Sat, 02 Dec 2023 09:13:01 GMT
date: Thu, 08 Dec 2022 16:20:19 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 4298
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F6%2F3%2F6349-0.jpg%3Fcb%3D9055279200116f2e4a8672847426951d&v=3&w=400&s=itAIn5rOHT8J7KMJ6AM814lN&b=400
178.250.2.135200 OK 5.9 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F6%2F3%2F6349-0.jpg%3Fcb%3D9055279200116f2e4a8672847426951d&v=3&w=400&s=itAIn5rOHT8J7KMJ6AM814lN&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ab422e7c2e948609e5d52bb6e4b4c77c
5d17e9cb404ea9d5ffb73f97563f5bebc1fcfaf6
15ee9ba7a34cbac34c5ab3a350ef2492507944e46da5384ba5ee3b31fdd03b13
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F6%2F3%2F6349-0.jpg%3Fcb%3D9055279200116f2e4a8672847426951d&v=3&w=400&s=itAIn5rOHT8J7KMJ6AM814lN&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30038437
expires: Tue, 21 Nov 2023 08:20:57 GMT
date: Thu, 08 Dec 2022 16:20:19 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 5948
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F6%2F7%2F67187-0.jpg%3Fcb%3D8f2c9d56d8e65a9dfe885d23b18da27b&v=3&w=400&s=e0Ba8vBbDOp86BzWek2SDid7&b=400
178.250.2.135200 OK 6.1 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F6%2F7%2F67187-0.jpg%3Fcb%3D8f2c9d56d8e65a9dfe885d23b18da27b&v=3&w=400&s=e0Ba8vBbDOp86BzWek2SDid7&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 232x250, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c0196b116edf7d2928e2894651067f74
b414322ffd0103f76f22ace0b236283add879881
a0457b45bdf51c091f3125db9392013b0c3851eac85de0d258fc11ea43cceff8
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F6%2F7%2F67187-0.jpg%3Fcb%3D8f2c9d56d8e65a9dfe885d23b18da27b&v=3&w=400&s=e0Ba8vBbDOp86BzWek2SDid7&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31493660
expires: Fri, 08 Dec 2023 04:34:40 GMT
date: Thu, 08 Dec 2022 16:20:19 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 6082
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F5%2F0%2F50408-0.jpg%3Fcb%3D176242d11630afb173b2bb2a03027ca6&v=3&w=400&s=clrzLqvGhGCLnKeVtinteMMz&b=400
178.250.2.135200 OK 16 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F5%2F0%2F50408-0.jpg%3Fcb%3D176242d11630afb173b2bb2a03027ca6&v=3&w=400&s=clrzLqvGhGCLnKeVtinteMMz&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 385x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1862781de234be327940d31dafee6e9f
f1cbed86d43adb364db6f68dd29ac26be1f41f43
060efc7a453895ca5e430c5af87db832923cabb15ae48fbc7db98d025227bd50
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F5%2F0%2F50408-0.jpg%3Fcb%3D176242d11630afb173b2bb2a03027ca6&v=3&w=400&s=clrzLqvGhGCLnKeVtinteMMz&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31451742
expires: Thu, 07 Dec 2023 16:56:02 GMT
date: Thu, 08 Dec 2022 16:20:18 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 15848
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F7%2F8745307-0.jpg%3Fcb%3D3b6e63c6c03955e41433c1de103aa97f&v=3&w=400&s=H6dWlLwaKIHKe0Xhb2rrOf1c&b=400
178.250.2.135200 OK 7.6 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F7%2F8745307-0.jpg%3Fcb%3D3b6e63c6c03955e41433c1de103aa97f&v=3&w=400&s=H6dWlLwaKIHKe0Xhb2rrOf1c&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 237x240, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 9b573fc470ef8cbc89f1035de8aa998a
3a192b5f9758318437a3d4f5be68f5051af46039
dcc9f88d2c0d057159015782eca9a29d97bd98bcf43565a43c0dddc9a0287fa4
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F7%2F8745307-0.jpg%3Fcb%3D3b6e63c6c03955e41433c1de103aa97f&v=3&w=400&s=H6dWlLwaKIHKe0Xhb2rrOf1c&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31317771
expires: Wed, 06 Dec 2023 03:43:10 GMT
date: Thu, 08 Dec 2022 16:20:19 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 7586
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F2%2F1%2F21211-0.jpg%3Fcb%3Db2b270f10974649affc80a63db21139d&v=3&w=400&s=LQs_qBICtx0u5s1_LdakkeT-&b=400
178.250.2.135200 OK 10 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F2%2F1%2F21211-0.jpg%3Fcb%3Db2b270f10974649affc80a63db21139d&v=3&w=400&s=LQs_qBICtx0u5s1_LdakkeT-&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x316, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 6436bfa5b4855553fd91ebf761c4826a
36a65aac4edd24d3c62e2234a1fd061f51d53536
93d285e7e8cfc597444e447d462d06a4cac66ccb58bea616948d65555c8036b4
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F2%2F1%2F21211-0.jpg%3Fcb%3Db2b270f10974649affc80a63db21139d&v=3&w=400&s=LQs_qBICtx0u5s1_LdakkeT-&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30561258
expires: Mon, 27 Nov 2023 09:34:38 GMT
date: Thu, 08 Dec 2022 16:20:19 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 9952
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F3%2F0%2F302424-0.jpg%3Fcb%3D165110a46c70156bfc34baaf80d2ebaf&v=3&w=400&s=iZZOAVnGloVCxc4DcxOht74e&b=400
178.250.2.135200 OK 8.4 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F3%2F0%2F302424-0.jpg%3Fcb%3D165110a46c70156bfc34baaf80d2ebaf&v=3&w=400&s=iZZOAVnGloVCxc4DcxOht74e&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 310x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 868a272801728e58df07d85fdfbccd64
57a1a56ba3414c05b60a4fc27b731c9bc7a58793
804e39f2933ca78531bfbead0aa2768ae95a93d37a145b59ce4e8194f6fedbc9
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F3%2F0%2F302424-0.jpg%3Fcb%3D165110a46c70156bfc34baaf80d2ebaf&v=3&w=400&s=iZZOAVnGloVCxc4DcxOht74e&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=29717010
expires: Fri, 17 Nov 2023 15:03:50 GMT
date: Thu, 08 Dec 2022 16:20:19 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 8404
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F5%2F0%2F50134-0.jpg%3Fcb%3D87087f83da99da8dce505a5c4952669c&v=3&w=400&s=ho4kysUCOjLNlshCH3JXUh2g&b=400
178.250.2.135200 OK 17 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F5%2F0%2F50134-0.jpg%3Fcb%3D87087f83da99da8dce505a5c4952669c&v=3&w=400&s=ho4kysUCOjLNlshCH3JXUh2g&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 288x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0174c89cd42b0a33c6b2d6151df118c7
ad26d2d114ef7c82bc5463afe92a5d4a65d8d1eb
22d6e040a7588605290d05e2a68c398a3868d83b592c3839821aa41365a6f3f5
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F5%2F0%2F50134-0.jpg%3Fcb%3D87087f83da99da8dce505a5c4952669c&v=3&w=400&s=ho4kysUCOjLNlshCH3JXUh2g&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31251809
expires: Tue, 05 Dec 2023 09:23:49 GMT
date: Thu, 08 Dec 2022 16:20:19 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 16714
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F6%2F3%2F6357-0.jpg%3Fcb%3Db585494aa925282607a9d070f2c62b9d&v=3&w=400&s=vV9jk9FzLAyl1HroCDw9mWFn&b=400
178.250.2.135200 OK 5.4 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F6%2F3%2F6357-0.jpg%3Fcb%3Db585494aa925282607a9d070f2c62b9d&v=3&w=400&s=vV9jk9FzLAyl1HroCDw9mWFn&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e48b6e4bd0b48464865c6cd368b8d0a2
0921498a62c143830f4268cb4cccb5e727585c93
57375b78f38aa3786fe18479a1d6b3ce6882a88251e6b8fad5574a9004c1be01
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F6%2F3%2F6357-0.jpg%3Fcb%3Db585494aa925282607a9d070f2c62b9d&v=3&w=400&s=vV9jk9FzLAyl1HroCDw9mWFn&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=29636354
expires: Thu, 16 Nov 2023 16:39:34 GMT
date: Thu, 08 Dec 2022 16:20:18 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 5428
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=37478&q=80&r=0&u=https%3A%2F%2Fwww.stormberg.com%2Fglobalassets%2Fproductimages%2F10962097602_5.jpg%3Fref%3D9E7E168C5F%26w%3D640%26h%3D914%26cb%3D48ab79b366910b7a5fab36589a82a9a7&v=3&w=400&s=Kwk1PFeXhv8s2Z7zk8A-fMLK&b=400
178.250.2.135200 OK 14 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=37478&q=80&r=0&u=https%3A%2F%2Fwww.stormberg.com%2Fglobalassets%2Fproductimages%2F10962097602_5.jpg%3Fref%3D9E7E168C5F%26w%3D640%26h%3D914%26cb%3D48ab79b366910b7a5fab36589a82a9a7&v=3&w=400&s=Kwk1PFeXhv8s2Z7zk8A-fMLK&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 280x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ac2c58289f498219f038811a8809dee5
3292934e3cc73a576b31ef6ea37b9a7fa2a74583
109486d04f75699df5a147c25e556194db73177e3f85d024a7c31d1d8591dd66
GET /img/img?c=3&cq=256&h=400&m=0&partner=37478&q=80&r=0&u=https%3A%2F%2Fwww.stormberg.com%2Fglobalassets%2Fproductimages%2F10962097602_5.jpg%3Fref%3D9E7E168C5F%26w%3D640%26h%3D914%26cb%3D48ab79b366910b7a5fab36589a82a9a7&v=3&w=400&s=Kwk1PFeXhv8s2Z7zk8A-fMLK&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=30774058
expires: Wed, 29 Nov 2023 20:41:18 GMT
date: Thu, 08 Dec 2022 16:20:19 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 14082
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?h=556&m=0&partner=37478&q=80&r=0&u=http%3A%2F%2Fstatic.fr.eu.criteo.net%2Fdesign%2Fdt%2F38356%2F180503%2Fd6f8e0942e444bd499149d6c84be7ac5_logo1.png&v=3&w=196&s=ecSOl3849LoAf_BEIWPJyspU
178.250.2.135200 OK 5.5 kB URL HTTP/2 pix.eu.criteo.net/img/img?h=556&m=0&partner=37478&q=80&r=0&u=http%3A%2F%2Fstatic.fr.eu.criteo.net%2Fdesign%2Fdt%2F38356%2F180503%2Fd6f8e0942e444bd499149d6c84be7ac5_logo1.png&v=3&w=196&s=ecSOl3849LoAf_BEIWPJyspU
IP 178.250.2.135:0
File type PNG image data, 196 x 41, 8-bit/color RGBA, non-interlaced\012- data
Hash c4629332e9ccf173a343c7af6f410673
525fd4a52468c13cc6f893468f4f4c1ed970d490
4e42791249590b18368971ae82944bfcec4ba471ca0d1a91c47e185d7aa8a42d
GET /img/img?h=556&m=0&partner=37478&q=80&r=0&u=http%3A%2F%2Fstatic.fr.eu.criteo.net%2Fdesign%2Fdt%2F38356%2F180503%2Fd6f8e0942e444bd499149d6c84be7ac5_logo1.png&v=3&w=196&s=ecSOl3849LoAf_BEIWPJyspU HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=30118717
expires: Wed, 22 Nov 2023 06:38:57 GMT
date: Thu, 08 Dec 2022 16:20:18 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 5473
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/png
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=37478&q=80&r=0&u=https%3A%2F%2Fwww.stormberg.com%2Fglobalassets%2Fproductimages%2F10971197608_4.jpg%3Fref%3DB0F2D1B836%26w%3D640%26h%3D914%26cb%3D7981c8bf03559fccd2e2d03e4f776243&v=3&w=400&s=Dcy4Ek4Ux0g8y52zHcY8eAUg&b=400
178.250.2.135200 OK 14 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=37478&q=80&r=0&u=https%3A%2F%2Fwww.stormberg.com%2Fglobalassets%2Fproductimages%2F10971197608_4.jpg%3Fref%3DB0F2D1B836%26w%3D640%26h%3D914%26cb%3D7981c8bf03559fccd2e2d03e4f776243&v=3&w=400&s=Dcy4Ek4Ux0g8y52zHcY8eAUg&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 280x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b1cf292e7fa0a53d45a18fbe7d5ba48a
9750a23602768c45f3b0e02aa02195ce415a0e28
6b15cb3b11c7f84df416163f52f8c9bc62dc768eb78b6fd077445c9aa403c47e
GET /img/img?c=3&cq=256&h=400&m=0&partner=37478&q=80&r=0&u=https%3A%2F%2Fwww.stormberg.com%2Fglobalassets%2Fproductimages%2F10971197608_4.jpg%3Fref%3DB0F2D1B836%26w%3D640%26h%3D914%26cb%3D7981c8bf03559fccd2e2d03e4f776243&v=3&w=400&s=Dcy4Ek4Ux0g8y52zHcY8eAUg&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=30817353
expires: Thu, 30 Nov 2023 08:42:53 GMT
date: Thu, 08 Dec 2022 16:20:19 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 14170
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?h=116&m=0&partner=12017&q=80&r=0&u=http%3A%2F%2Fstatic.fr.eu.criteo.net%2Fdesign%2Fdt%2F12018%2F220214%2Fe8c42282818a4114a6e91079f2fbb54a_chanti-logo.jpeg&v=3&w=536&s=2-YsAzYcs0Na4jPBnc1EPZ2x
178.250.2.135200 OK 2.3 kB URL HTTP/2 pix.eu.criteo.net/img/img?h=116&m=0&partner=12017&q=80&r=0&u=http%3A%2F%2Fstatic.fr.eu.criteo.net%2Fdesign%2Fdt%2F12018%2F220214%2Fe8c42282818a4114a6e91079f2fbb54a_chanti-logo.jpeg&v=3&w=536&s=2-YsAzYcs0Na4jPBnc1EPZ2x
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 406x116, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 94e9535c73f0d1c753725cddd00b2a17
7f2d93cd3c06df64712d43f93a0a31274ddb9945
64593ae17c97fbafba4e9d63b54f28f58d00afdf9e6e3bf642ca70a2964ed676
GET /img/img?h=116&m=0&partner=12017&q=80&r=0&u=http%3A%2F%2Fstatic.fr.eu.criteo.net%2Fdesign%2Fdt%2F12018%2F220214%2Fe8c42282818a4114a6e91079f2fbb54a_chanti-logo.jpeg&v=3&w=536&s=2-YsAzYcs0Na4jPBnc1EPZ2x HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=29520947
expires: Wed, 15 Nov 2023 08:36:07 GMT
date: Thu, 08 Dec 2022 16:20:19 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 2302
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=37478&q=80&r=0&u=https%3A%2F%2Fwww.stormberg.com%2Fglobalassets%2Fproductimages%2Fbarnehage_skolestart2020_300.jpg%3Fref%3D7B89B3256F%26w%3D640%26h%3D914%26cb%3D3ee89fe5c2c3d4ed66420cf74565ea52&v=3&w=400&s=Pw_ju98pvNaw_GI9q139xzoP&b=400
178.250.2.135200 OK 25 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=37478&q=80&r=0&u=https%3A%2F%2Fwww.stormberg.com%2Fglobalassets%2Fproductimages%2Fbarnehage_skolestart2020_300.jpg%3Fref%3D7B89B3256F%26w%3D640%26h%3D914%26cb%3D3ee89fe5c2c3d4ed66420cf74565ea52&v=3&w=400&s=Pw_ju98pvNaw_GI9q139xzoP&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 280x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 4435d6690b08f195d0cd65a4d9d948f8
5c29c33e9497a386c1371965687033b9a8934b0b
cdbc7fa5872377f441efb435d17bfdb2a2e922a6354131171d1dc7c8c3a00186
GET /img/img?c=3&cq=256&h=400&m=0&partner=37478&q=80&r=0&u=https%3A%2F%2Fwww.stormberg.com%2Fglobalassets%2Fproductimages%2Fbarnehage_skolestart2020_300.jpg%3Fref%3D7B89B3256F%26w%3D640%26h%3D914%26cb%3D3ee89fe5c2c3d4ed66420cf74565ea52&v=3&w=400&s=Pw_ju98pvNaw_GI9q139xzoP&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=30728888
expires: Wed, 29 Nov 2023 08:08:28 GMT
date: Thu, 08 Dec 2022 16:20:19 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 24564
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F7%2F178GR0017Z-0.jpg%3Fcb%3Dd2275143653c8b6c1a4d350e9a49880d&v=3&w=800&s=7wigCJUIAXxmnmfN-3L1JKFM&b=400
178.250.2.135200 OK 6.9 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F7%2F178GR0017Z-0.jpg%3Fcb%3Dd2275143653c8b6c1a4d350e9a49880d&v=3&w=800&s=7wigCJUIAXxmnmfN-3L1JKFM&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 165x241, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 834be1e94b97b3046f72dc7e1655cbc2
01763b030849d82d7d401131d540ffc118c9e230
0cf7663e5fafa148537e1fd7f65fab5540d4e0a84662b5c71f3c27c26994f289
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F7%2F178GR0017Z-0.jpg%3Fcb%3Dd2275143653c8b6c1a4d350e9a49880d&v=3&w=800&s=7wigCJUIAXxmnmfN-3L1JKFM&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=29515168
expires: Wed, 15 Nov 2023 06:59:48 GMT
date: Thu, 08 Dec 2022 16:20:19 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 6922
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F3%2F5%2F355108-0.jpg%3Fcb%3Df38a9887d70fe8a67810b481f0a291d6&v=3&w=800&s=ekWzKlSihnPPhhiVOAr6Oc6b&b=400
178.250.2.135200 OK 8.5 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F3%2F5%2F355108-0.jpg%3Fcb%3Df38a9887d70fe8a67810b481f0a291d6&v=3&w=800&s=ekWzKlSihnPPhhiVOAr6Oc6b&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 4467a9ae13171b5f3278e6d2ce727bf2
7a21d7b0cd66f63d7e8b4c66be59f97f3368c44e
17f148460d5036a7ab08c77538b8899d3aa8a5e65c77cbcc51ba01539b1a7d09
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F3%2F5%2F355108-0.jpg%3Fcb%3Df38a9887d70fe8a67810b481f0a291d6&v=3&w=800&s=ekWzKlSihnPPhhiVOAr6Oc6b&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=29609711
expires: Thu, 16 Nov 2023 09:15:31 GMT
date: Thu, 08 Dec 2022 16:20:19 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 8504
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F3%2F139200-2.jpg%3Fcb%3Df4bbfffcc691f0d09fed11ab574d2c15&v=3&w=800&s=ELGNwAEysDJJFXqMz4SRd9vY&b=400
178.250.2.135200 OK 11 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F3%2F139200-2.jpg%3Fcb%3Df4bbfffcc691f0d09fed11ab574d2c15&v=3&w=800&s=ELGNwAEysDJJFXqMz4SRd9vY&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x358, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b4a8b65dd45b5caaf05d7af1a012c211
2d76450cb9247fc5eb904e3d6db3c051c26226ae
bdeedcf8ba166914065e069ca9514b3020cfe22d1239cb8ec86495c301108540
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F3%2F139200-2.jpg%3Fcb%3Df4bbfffcc691f0d09fed11ab574d2c15&v=3&w=800&s=ELGNwAEysDJJFXqMz4SRd9vY&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30033480
expires: Tue, 21 Nov 2023 06:58:20 GMT
date: Thu, 08 Dec 2022 16:20:19 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 10926
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=37478&q=80&r=0&u=https%3A%2F%2Fwww.stormberg.com%2Fglobalassets%2Fproductimages%2F11020099072_1.jpg%3Fref%3DBBB4DA2E44%26w%3D640%26h%3D914%26cb%3Dcae9b0664bba52b0ae03cd36f40ae8ff&v=3&w=400&s=WAYBsNmXPIKLukcPbNsle3ki&b=400
178.250.2.135200 OK 5.5 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=37478&q=80&r=0&u=https%3A%2F%2Fwww.stormberg.com%2Fglobalassets%2Fproductimages%2F11020099072_1.jpg%3Fref%3DBBB4DA2E44%26w%3D640%26h%3D914%26cb%3Dcae9b0664bba52b0ae03cd36f40ae8ff&v=3&w=400&s=WAYBsNmXPIKLukcPbNsle3ki&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x229, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 6f1d370531c0f8c6fd59e49b922ca35e
e1e19a24c370e2edf68e91b9e2e5a8b8f0af0165
a2101545de25e600b6b3bdcc4bdeb5cccdac022a318912c19523d4bdb1008123
GET /img/img?c=3&cq=256&h=400&m=0&partner=37478&q=80&r=0&u=https%3A%2F%2Fwww.stormberg.com%2Fglobalassets%2Fproductimages%2F11020099072_1.jpg%3Fref%3DBBB4DA2E44%26w%3D640%26h%3D914%26cb%3Dcae9b0664bba52b0ae03cd36f40ae8ff&v=3&w=400&s=WAYBsNmXPIKLukcPbNsle3ki&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=30773870
expires: Wed, 29 Nov 2023 20:38:10 GMT
date: Thu, 08 Dec 2022 16:20:19 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 5474
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F7%2F178GR0032Z-0.jpg%3Fcb%3Dfc9fb5bf427d201ca99fff8b4c6f02a3&v=3&w=800&s=x8HOu9WLwxoam_PPNVQgIQzk&b=400
178.250.2.135200 OK 6.6 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F7%2F178GR0032Z-0.jpg%3Fcb%3Dfc9fb5bf427d201ca99fff8b4c6f02a3&v=3&w=800&s=x8HOu9WLwxoam_PPNVQgIQzk&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 173x238, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 318b500e2b854e1f27709570b83b517d
cc53864c3a5784fc5f24c9f50188fc258f0a1e09
04b12bdf47ca28c4b4088444584f2d40ed7209502a3217b9dce22f6e1c8ba62b
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F7%2F178GR0032Z-0.jpg%3Fcb%3Dfc9fb5bf427d201ca99fff8b4c6f02a3&v=3&w=800&s=x8HOu9WLwxoam_PPNVQgIQzk&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=29505374
expires: Wed, 15 Nov 2023 04:16:34 GMT
date: Thu, 08 Dec 2022 16:20:19 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 6598
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F5%2F0%2F50134-0.jpg%3Fcb%3D87087f83da99da8dce505a5c4952669c&v=3&w=800&s=8lnX3Qo5Gq1MepTQRS9kh0fI&b=400
178.250.2.135200 OK 17 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F5%2F0%2F50134-0.jpg%3Fcb%3D87087f83da99da8dce505a5c4952669c&v=3&w=800&s=8lnX3Qo5Gq1MepTQRS9kh0fI&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 288x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0174c89cd42b0a33c6b2d6151df118c7
ad26d2d114ef7c82bc5463afe92a5d4a65d8d1eb
22d6e040a7588605290d05e2a68c398a3868d83b592c3839821aa41365a6f3f5
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F5%2F0%2F50134-0.jpg%3Fcb%3D87087f83da99da8dce505a5c4952669c&v=3&w=800&s=8lnX3Qo5Gq1MepTQRS9kh0fI&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31251809
expires: Tue, 05 Dec 2023 09:23:49 GMT
date: Thu, 08 Dec 2022 16:20:19 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 16714
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F5%2F3%2F53858-0.jpg%3Fcb%3Df661ebfe7e8461b1aa776d9647b44d74&v=3&w=800&s=IlDQVF_Fuv2E4tLS8BUAz5vh&b=400
178.250.2.135200 OK 5.1 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F5%2F3%2F53858-0.jpg%3Fcb%3Df661ebfe7e8461b1aa776d9647b44d74&v=3&w=800&s=IlDQVF_Fuv2E4tLS8BUAz5vh&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x287, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 5dff790a5bb26782110b9d621212e3b5
0b9bdb39b2fbb7823b6a6b80845206df692e80c2
1eedd2a7f883999396b0c2877a2512186f875339b3e284c34601ebb9a71fb8e0
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F5%2F3%2F53858-0.jpg%3Fcb%3Df661ebfe7e8461b1aa776d9647b44d74&v=3&w=800&s=IlDQVF_Fuv2E4tLS8BUAz5vh&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30362730
expires: Sat, 25 Nov 2023 02:25:49 GMT
date: Thu, 08 Dec 2022 16:20:19 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 5062
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F3%2F83591-0_1.jpg%3Fcb%3D828f9487166625843238be36ee8cdf26&v=3&w=400&s=bQ_DbQumFKYnU6Uhhsgz0EQ0&b=400
178.250.2.135200 OK 6.6 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F3%2F83591-0_1.jpg%3Fcb%3D828f9487166625843238be36ee8cdf26&v=3&w=400&s=bQ_DbQumFKYnU6Uhhsgz0EQ0&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 292x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e0d054273dab5634e1cd614fea44b772
b7d5f841378fdfe71a24466b2d1ee70bf52e5c43
a9f89efc73a60287ddbf6ec9712e2577aa8abc1ccf9d60cc072586783ac3841d
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F3%2F83591-0_1.jpg%3Fcb%3D828f9487166625843238be36ee8cdf26&v=3&w=400&s=bQ_DbQumFKYnU6Uhhsgz0EQ0&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30374324
expires: Sat, 25 Nov 2023 05:39:04 GMT
date: Thu, 08 Dec 2022 16:20:19 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 6594
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F2%2F1%2F21886020-0_1.jpg%3Fcb%3D5a54cd9d7f575730a08d4a141df6d38c&v=3&w=800&s=-uRdRMiMQFz0wqrlLH2IBYOz&b=400
178.250.2.135200 OK 7.1 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F2%2F1%2F21886020-0_1.jpg%3Fcb%3D5a54cd9d7f575730a08d4a141df6d38c&v=3&w=800&s=-uRdRMiMQFz0wqrlLH2IBYOz&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 286x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 54cacfa33c8ceaa943fb766aecef0d05
5d7ac9c37a1e20928660363e5b8aab357de9b000
41ceec71f7ebaea69836a1ce22dce0c27650bea84143a8cf2685971cd13527b1
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F2%2F1%2F21886020-0_1.jpg%3Fcb%3D5a54cd9d7f575730a08d4a141df6d38c&v=3&w=800&s=-uRdRMiMQFz0wqrlLH2IBYOz&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31510473
expires: Fri, 08 Dec 2023 09:14:53 GMT
date: Thu, 08 Dec 2022 16:20:19 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 7134
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F6%2F3%2F6357-0.jpg%3Fcb%3Db585494aa925282607a9d070f2c62b9d&v=3&w=800&s=iEsbUnprfuvXdd_7C3wZtWAQ&b=400
178.250.2.135200 OK 5.4 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F6%2F3%2F6357-0.jpg%3Fcb%3Db585494aa925282607a9d070f2c62b9d&v=3&w=800&s=iEsbUnprfuvXdd_7C3wZtWAQ&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e48b6e4bd0b48464865c6cd368b8d0a2
0921498a62c143830f4268cb4cccb5e727585c93
57375b78f38aa3786fe18479a1d6b3ce6882a88251e6b8fad5574a9004c1be01
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F6%2F3%2F6357-0.jpg%3Fcb%3Db585494aa925282607a9d070f2c62b9d&v=3&w=800&s=iEsbUnprfuvXdd_7C3wZtWAQ&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=29636354
expires: Thu, 16 Nov 2023 16:39:34 GMT
date: Thu, 08 Dec 2022 16:20:19 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 5428
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F8%2F1844679-0.jpg%3Fcb%3Ddce4718ada81e3fe0dc0bbc372fc1ecf&v=3&w=800&s=noNWMdebWzcc6GSf5ooYS_HB&b=400
178.250.2.135200 OK 8.4 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F8%2F1844679-0.jpg%3Fcb%3Ddce4718ada81e3fe0dc0bbc372fc1ecf&v=3&w=800&s=noNWMdebWzcc6GSf5ooYS_HB&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x365, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 9ab9352694e39d09b006d299a75d4b4e
c67a9f66f025ad84c090cc2ed5c36ebf101df203
432a7d6bd46254f1d9cf470e8d18031e0731c98f3101c03723217879d6dfa838
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F8%2F1844679-0.jpg%3Fcb%3Ddce4718ada81e3fe0dc0bbc372fc1ecf&v=3&w=800&s=noNWMdebWzcc6GSf5ooYS_HB&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=29516087
expires: Wed, 15 Nov 2023 07:15:07 GMT
date: Thu, 08 Dec 2022 16:20:19 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 8404
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F3%2F83591-0_1.jpg%3Fcb%3D828f9487166625843238be36ee8cdf26&v=3&w=800&s=TdigO6KAmtKaSB5YYF9lWn62&b=400
178.250.2.135200 OK 6.6 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F3%2F83591-0_1.jpg%3Fcb%3D828f9487166625843238be36ee8cdf26&v=3&w=800&s=TdigO6KAmtKaSB5YYF9lWn62&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 292x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e0d054273dab5634e1cd614fea44b772
b7d5f841378fdfe71a24466b2d1ee70bf52e5c43
a9f89efc73a60287ddbf6ec9712e2577aa8abc1ccf9d60cc072586783ac3841d
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F3%2F83591-0_1.jpg%3Fcb%3D828f9487166625843238be36ee8cdf26&v=3&w=800&s=TdigO6KAmtKaSB5YYF9lWn62&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30374324
expires: Sat, 25 Nov 2023 05:39:04 GMT
date: Thu, 08 Dec 2022 16:20:19 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 6594
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F6%2F3%2F6349-0.jpg%3Fcb%3D9055279200116f2e4a8672847426951d&v=3&w=800&s=f8AgwWDlqiH4tW0kUAJ8YaiW&b=400
178.250.2.135200 OK 5.9 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F6%2F3%2F6349-0.jpg%3Fcb%3D9055279200116f2e4a8672847426951d&v=3&w=800&s=f8AgwWDlqiH4tW0kUAJ8YaiW&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ab422e7c2e948609e5d52bb6e4b4c77c
5d17e9cb404ea9d5ffb73f97563f5bebc1fcfaf6
15ee9ba7a34cbac34c5ab3a350ef2492507944e46da5384ba5ee3b31fdd03b13
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F6%2F3%2F6349-0.jpg%3Fcb%3D9055279200116f2e4a8672847426951d&v=3&w=800&s=f8AgwWDlqiH4tW0kUAJ8YaiW&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30038437
expires: Tue, 21 Nov 2023 08:20:57 GMT
date: Thu, 08 Dec 2022 16:20:19 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 5948
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F3%2F831689-0.jpg%3Fcb%3D746e2191fd141dce838dd5582b8661be&v=3&w=800&s=Y5it0pNvlWWNRETajU_g5wvm&b=400
178.250.2.135200 OK 3.7 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F3%2F831689-0.jpg%3Fcb%3D746e2191fd141dce838dd5582b8661be&v=3&w=800&s=Y5it0pNvlWWNRETajU_g5wvm&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 205x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 3682dacb7a94af61dee15aa78045a9a5
abcfe697906b924e5a296a4720d72fc30d5e56b2
c8099a2a55044610080b73376df81d8050a41b3dead8b147381fc523037c9d50
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F8%2F3%2F831689-0.jpg%3Fcb%3D746e2191fd141dce838dd5582b8661be&v=3&w=800&s=Y5it0pNvlWWNRETajU_g5wvm&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=29265360
expires: Sun, 12 Nov 2023 09:36:20 GMT
date: Thu, 08 Dec 2022 16:20:19 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 3670
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F5%2F0%2F50143-0.jpg%3Fcb%3Dd2c3bbd8a87287702ebdd2254af1a9c0&v=3&w=800&s=462CsdT9Pw9uo-KmK4_6O75N&b=400
178.250.2.135200 OK 8.0 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F5%2F0%2F50143-0.jpg%3Fcb%3Dd2c3bbd8a87287702ebdd2254af1a9c0&v=3&w=800&s=462CsdT9Pw9uo-KmK4_6O75N&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x307, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 439a54c2eb38e1ebac67ec975d668919
db8607b9c7f1ed5a71395b766c6364eef68d5940
180a3f43ce5c9bac1ce8eb00e9d5c9b00035db506d76a0b462b10fd830616578
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F5%2F0%2F50143-0.jpg%3Fcb%3Dd2c3bbd8a87287702ebdd2254af1a9c0&v=3&w=800&s=462CsdT9Pw9uo-KmK4_6O75N&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30819424
expires: Thu, 30 Nov 2023 09:17:23 GMT
date: Thu, 08 Dec 2022 16:20:19 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 7998
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F9%2F199217-0.jpg%3Fcb%3D47dbfbf4f03c12e4fad3262b52cc498f&v=3&w=800&s=zmBiqudPSUEDt_IcffN7S8Jr&b=400
178.250.2.135200 OK 4.3 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F9%2F199217-0.jpg%3Fcb%3D47dbfbf4f03c12e4fad3262b52cc498f&v=3&w=800&s=zmBiqudPSUEDt_IcffN7S8Jr&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 274x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d4f5eb42d3a4558a7c995710ff437cb0
1f73d7b42b3e1f5b8754e62b1ff933f2e69f3d1c
c33b7e6d19155abc7f2ad85172e017a537e0cd29f15fc2cce401bb9f87ec2193
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F1%2F9%2F199217-0.jpg%3Fcb%3D47dbfbf4f03c12e4fad3262b52cc498f&v=3&w=800&s=zmBiqudPSUEDt_IcffN7S8Jr&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30991962
expires: Sat, 02 Dec 2023 09:13:01 GMT
date: Thu, 08 Dec 2022 16:20:19 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 4298
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F3%2F0%2F302527-0_1.jpg%3Fcb%3D5b5ab542b8cf7ce029818776d1ca08d1&v=3&w=800&s=F8hbQ0w9Wsn54yUE2v2LKDcf&b=400
178.250.2.135200 OK 12 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F3%2F0%2F302527-0_1.jpg%3Fcb%3D5b5ab542b8cf7ce029818776d1ca08d1&v=3&w=800&s=F8hbQ0w9Wsn54yUE2v2LKDcf&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 282x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 38e707e3ba3e99e897552f6eb5f9dd30
e1820b168ff23331e9c13ecd344e54b4650a5455
20b9bdd1b130b5061469f933605ea1cff6f6aac41d294329031c8b1bd7c05291
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F3%2F0%2F302527-0_1.jpg%3Fcb%3D5b5ab542b8cf7ce029818776d1ca08d1&v=3&w=800&s=F8hbQ0w9Wsn54yUE2v2LKDcf&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=29738258
expires: Fri, 17 Nov 2023 20:57:58 GMT
date: Thu, 08 Dec 2022 16:20:19 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 12218
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F3%2F0%2F302424-0.jpg%3Fcb%3D165110a46c70156bfc34baaf80d2ebaf&v=3&w=800&s=0B5S42Ju-FXDZ2kvjhzxRMVp&b=400
178.250.2.135200 OK 8.4 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F3%2F0%2F302424-0.jpg%3Fcb%3D165110a46c70156bfc34baaf80d2ebaf&v=3&w=800&s=0B5S42Ju-FXDZ2kvjhzxRMVp&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 310x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 868a272801728e58df07d85fdfbccd64
57a1a56ba3414c05b60a4fc27b731c9bc7a58793
804e39f2933ca78531bfbead0aa2768ae95a93d37a145b59ce4e8194f6fedbc9
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F3%2F0%2F302424-0.jpg%3Fcb%3D165110a46c70156bfc34baaf80d2ebaf&v=3&w=800&s=0B5S42Ju-FXDZ2kvjhzxRMVp&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=29717010
expires: Fri, 17 Nov 2023 15:03:50 GMT
date: Thu, 08 Dec 2022 16:20:19 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 8404
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F2%2F1%2F21864210-0.jpg%3Fcb%3D9f9bbceed656e43c0eaeb2baf98184e4&v=3&w=400&s=WreIOy3Ew-R0UyyAE13hFTga&b=400
178.250.2.135200 OK 5.9 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F2%2F1%2F21864210-0.jpg%3Fcb%3D9f9bbceed656e43c0eaeb2baf98184e4&v=3&w=400&s=WreIOy3Ew-R0UyyAE13hFTga&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 255x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0efd8b5e7fdd024109e09dfbb3044ab7
81b9aaa6b414e86b3a57625f9a3ef1a0cc9bff89
fb471f24bdd2443cc8fca4b1cde0c9234767620433215c8401e9c17cdeb03c8b
GET /img/img?c=3&cq=256&h=400&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F2%2F1%2F21864210-0.jpg%3Fcb%3D9f9bbceed656e43c0eaeb2baf98184e4&v=3&w=400&s=WreIOy3Ew-R0UyyAE13hFTga&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=28931573
expires: Wed, 08 Nov 2023 12:53:13 GMT
date: Thu, 08 Dec 2022 16:20:18 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 5932
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/criteo_logo_2021.svg
178.250.2.130200 OK 8.6 kB URL HTTP/2 static.criteo.net/flash/icon/criteo_logo_2021.svg
IP 178.250.2.130:0
Hash 7661bd2be3609822fbad811bd3a9c191
90c1f5b43df5da1c76d039e40f97080411e9d3b9
91c8683c6273c370ff832650b8bd3b870d7a1273c974c2622dcc4505d397cc15
GET /flash/icon/criteo_logo_2021.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:20:19 GMT
content-type: image/svg+xml
last-modified: Thu, 27 May 2021 13:21:59 GMT
etag: W/"60af9cf7-891"
expires: Sun, 03 Dec 2023 16:20:19 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6ec5f6261a8262e9f94b29627f54cefe
7ac766cf2ac8c2d960ec033388a767ff8a7d45e2
5f6ee11d840909fc5272c2c32f7874d55f49d831abc88d527e35562d218890f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 16:20:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6ec5f6261a8262e9f94b29627f54cefe
7ac766cf2ac8c2d960ec033388a767ff8a7d45e2
5f6ee11d840909fc5272c2c32f7874d55f49d831abc88d527e35562d218890f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 16:20:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F5%2F0%2F50135-0.jpg%3Fcb%3D3af734182af937b3319334df30840d49&v=3&w=800&s=fLTaRjGeJHarFBGs1ntplkgV&b=400
178.250.2.135200 OK 14 kB URL HTTP/2 pix.eu.criteo.net/img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F5%2F0%2F50135-0.jpg%3Fcb%3D3af734182af937b3319334df30840d49&v=3&w=800&s=fLTaRjGeJHarFBGs1ntplkgV&b=400
IP 178.250.2.135:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 279x400, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e61e47579bfae70d0ee0380fc5e1dc4e
0dbbfdb525763bccd865f42bd46e36dfe996bac2
3044b2b24127504da93ba87c2a335d06222cec3eddcbbb4960f066bbbf3faa8e
GET /img/img?c=3&cq=256&h=800&m=0&partner=12017&q=80&r=0&u=https%3A%2F%2Fwww.chanti.no%2Fmedia%2Fcatalog%2Fproduct%2F5%2F0%2F50135-0.jpg%3Fcb%3D3af734182af937b3319334df30840d49&v=3&w=800&s=fLTaRjGeJHarFBGs1ntplkgV&b=400 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30995978
expires: Sat, 02 Dec 2023 10:19:58 GMT
date: Thu, 08 Dec 2022 16:20:19 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 14246
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6ec5f6261a8262e9f94b29627f54cefe
7ac766cf2ac8c2d960ec033388a767ff8a7d45e2
5f6ee11d840909fc5272c2c32f7874d55f49d831abc88d527e35562d218890f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 16:20:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
142.250.74.35200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Dec 2022 18:52:41 GMT
expires: Tue, 05 Dec 2023 18:52:41 GMT
cache-control: public, max-age=31536000
age: 250059
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
142.250.74.35200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 23040, version 1.0\012- data
Hash de69cf9e514df447d1b0bb16f49d2457
2ac78601179c3a63ba3f3f3081556b12ddcaf655
c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49
GET /s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Dec 2022 12:29:22 GMT
expires: Fri, 08 Dec 2023 12:29:22 GMT
cache-control: public, max-age=31536000
age: 13858
last-modified: Tue, 26 Apr 2022 15:56:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/blogger_img_proxy/ANbyha2Vsd7OcVYFqRo_QhOVUubbl5R_gv_izgYjoZranAp2ppF69VU5KAsBOKaspktxX1BWwNW9wH5Pr-DXlrNaczhkkVXXXWCAUGrOyGrb1I2jDt-PWLGlpFtMb4xZp57pAshnoxsK6LbHounPacvoJ3u33rYN0av5qeLVy64nATH_EqvInJGPSYexJg21BL-REPZKr4M=w72-h72-p-k-no-nu
142.250.74.97404 Not Found 43 B URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ANbyha2Vsd7OcVYFqRo_QhOVUubbl5R_gv_izgYjoZranAp2ppF69VU5KAsBOKaspktxX1BWwNW9wH5Pr-DXlrNaczhkkVXXXWCAUGrOyGrb1I2jDt-PWLGlpFtMb4xZp57pAshnoxsK6LbHounPacvoJ3u33rYN0av5qeLVy64nATH_EqvInJGPSYexJg21BL-REPZKr4M=w72-h72-p-k-no-nu
IP 142.250.74.97:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ebd4c7248ac9be0c41d02060e3430a5d
eabc59bee6a7ff007a1dfc3da3b5493143c0d087
e1da5cd02d74bb5ba944e3ce44037860ac9f42392eec6c99b9543910e1a3a5fe
GET /blogger_img_proxy/ANbyha2Vsd7OcVYFqRo_QhOVUubbl5R_gv_izgYjoZranAp2ppF69VU5KAsBOKaspktxX1BWwNW9wH5Pr-DXlrNaczhkkVXXXWCAUGrOyGrb1I2jDt-PWLGlpFtMb4xZp57pAshnoxsK6LbHounPacvoJ3u33rYN0av5qeLVy64nATH_EqvInJGPSYexJg21BL-REPZKr4M=w72-h72-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alfabetizacaoecia.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
access-control-allow-origin: *
timing-allow-origin: *
content-type: image/gif
x-content-type-options: nosniff
date: Thu, 08 Dec 2022 16:20:20 GMT
server: fife
content-length: 43
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lato:400,700&subset=latin,cyrillic,latin-ext,cyrillic-ext,vietnamese,greek-ext,greek
142.250.74.74200 OK 24 kB URL HTTP/2 fonts.googleapis.com/css?family=Lato:400,700&subset=latin,cyrillic,latin-ext,cyrillic-ext,vietnamese,greek-ext,greek
IP 142.250.74.74:0
Hash 813a509ab98f1261d5397479dea5867d
2e212243ed3d87e260cbd5ba3e226806c926ce17
579063c6a41623745b26ac24092d6b0583d09f4cce70fbb9a163311a3ca7723c
GET /css?family=Lato:400,700&subset=latin,cyrillic,latin-ext,cyrillic-ext,vietnamese,greek-ext,greek HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 08 Dec 2022 16:20:19 GMT
date: Thu, 08 Dec 2022 16:20:19 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13508
Expires: Thu, 08 Dec 2022 20:05:28 GMT
Date: Thu, 08 Dec 2022 16:20:20 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13508
Expires: Thu, 08 Dec 2022 20:05:28 GMT
Date: Thu, 08 Dec 2022 16:20:20 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13508
Expires: Thu, 08 Dec 2022 20:05:28 GMT
Date: Thu, 08 Dec 2022 16:20:20 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13508
Expires: Thu, 08 Dec 2022 20:05:28 GMT
Date: Thu, 08 Dec 2022 16:20:20 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13508
Expires: Thu, 08 Dec 2022 20:05:28 GMT
Date: Thu, 08 Dec 2022 16:20:20 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffe93cbd-4506-4ab1-b0ea-94eabecae7b9.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffe93cbd-4506-4ab1-b0ea-94eabecae7b9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 210b27f5f6310d8fad640acce3d9ae0e
08d241e56622cb900754d95bc5d58ed8826d9f32
64410e13759cdfa24976dcba0c64aca27edc3ee56358f344e55f60793422e3ea
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffe93cbd-4506-4ab1-b0ea-94eabecae7b9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6557
x-amzn-requestid: 0232ddcd-8274-431e-a55e-8298fbfd6dfc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cmcuMG6bIAMFUng=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638c0e5a-3cc17121425f87321ce7ae7e;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 03:04:58 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: EeYw3qxRNMEhtLkUrHQe5b1H_f2k-5BWSZV4LEZ9U64rqm7Addv_Dw==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 06:56:32 GMT
age: 33828
etag: "08d241e56622cb900754d95bc5d58ed8826d9f32"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9519925e-95b7-4e66-b317-84c1708c7f84.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9519925e-95b7-4e66-b317-84c1708c7f84.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b87d6543345f73653ed4a49b37d7c959
c4f26846b8b72293368ff16915d49297cf12bbb9
aee6aa42e4b5b83b81f74801ff8f0039fc6d38036f42ee81875813c856cf5eef
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9519925e-95b7-4e66-b317-84c1708c7f84.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8659
x-amzn-requestid: 6f420d07-65d5-4bb2-9f1f-e56025de497b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czFSYFArIAMF46w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63911c0f-0a295e5c48228d5806b4f107;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 23:04:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: TSh1BNzzIPhWCfYEiqvQJckSPAyhHobe-HK6msEVeEJ1ruX-_rMSSA==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 23:35:32 GMT
age: 60288
etag: "c4f26846b8b72293368ff16915d49297cf12bbb9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbbba0eea-a6f1-4374-a9c7-dab84270023b.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbbba0eea-a6f1-4374-a9c7-dab84270023b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 24d89b69ba37bf23c5d576aff4063caf
3d46a21b4da571d7e4962e335c18a28ca5f81ecf
09b52cdab278805c6e7282f469a02768ee62fc9ef09a6623a337e3d3aaa446fd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbbba0eea-a6f1-4374-a9c7-dab84270023b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7268
x-amzn-requestid: ae5c231c-b1be-498a-a242-e8d641f3fe8e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czFDgEzUoAMFgyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63911baf-10f06dc37cac69631c823fd9;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 23:03:11 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: wFqXeAYHSBcj85PiuqhV790clAMWg_NHMCO5Q5WARXDaohFWZdeCig==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 23:19:17 GMT
age: 61263
etag: "3d46a21b4da571d7e4962e335c18a28ca5f81ecf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F74e98e03-fa9f-4e56-a8ba-5411568d88c8.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F74e98e03-fa9f-4e56-a8ba-5411568d88c8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c408efaa98ac2ce63bb1618368d10c15
a51bbb49ebd862d04eaee465d0a35b22dcd21391
077eb8c8739f527828c71c25a1c3aaae46afead3aac093ec11a6d5488ef2f0ec
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F74e98e03-fa9f-4e56-a8ba-5411568d88c8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9596
x-amzn-requestid: e5e6ceb2-5bad-4146-a9de-92a859716029
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cy3_qH63oAMFfLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639106ca-678bed1b7729b8aa2645688d;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 21:34:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: dcHU93cetsY4-vWHpT2xXozH1T7J3_1X8n6Yjd6lOuF8HbkpTQDerg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 22:13:24 GMT
etag: "a51bbb49ebd862d04eaee465d0a35b22dcd21391"
content-type: image/jpeg
age: 65216
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4119e239-0c3b-4175-bfe0-f5d42729d743.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4119e239-0c3b-4175-bfe0-f5d42729d743.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8c94003641bb5a7595e7004f80f95d22
3446450df60d732f9021d5bfd5f5f7c6c870d9ec
4d782dbf94b2163e9bc18028cd0c1a391fdcfcb019f23c4c26ea0b44432039ff
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4119e239-0c3b-4175-bfe0-f5d42729d743.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7801
x-amzn-requestid: cb8d5aab-409f-4b39-b498-b1ba84f34e06
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czFRNHX4oAMFvoQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63911c07-7c6e3bfa3f81082b48f43fa9;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 23:04:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 8QHhEAFHTHd-5UqS1S5qwJj_h4WNfix2CgS4MO4zR_psrzgMP3SZ5g==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 23:16:35 GMT
age: 61425
etag: "3446450df60d732f9021d5bfd5f5f7c6c870d9ec"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9301ee5-df75-4967-a2c7-597f869e557b.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9301ee5-df75-4967-a2c7-597f869e557b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 57be99ac898a37d73f2ba4a24f56248f
04e32eb45581201a6a1863200e4d139df48285e6
a20081b64fc019372843360b15aa3461ec9dd3deb50ab398bca0a5e74d5468c2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9301ee5-df75-4967-a2c7-597f869e557b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12534
x-amzn-requestid: 2a01f2ba-cf3a-4f59-8339-214c66bcc0d2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czDbyGTcoAMF_TQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63911918-5d3eba8d01e4175a71acc6cd;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 22:52:08 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NoZlZ8WFfOuIbkWaC2pJPJQrWtjzz2gCHJWr-u-nMNYmu8MkTf6_PA==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 23:03:58 GMT
age: 62182
etag: "04e32eb45581201a6a1863200e4d139df48285e6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=ROsmJfv7m2yglmhsRZPS5Qw95vi4saTjRthPbn-lZT0AcZcQD3OahLBs4FtvibEAJYKz8Paz0CGFu_qoFCJYmpUROVs76at66mMkSAdH_abJfJlVnnle0NiVlZm37S_VfdPeRt771WakTzT1AGEU3beFpNEt9YqUe4lZgvq6HOp5m-HcSPVG-CZabk69bnMpp1EGIjrAh_nxrjlxrhhRmf0fCn9L_v_dkBSuWcPscvx0ltNg5p_tj1mTSXuCV28_12LbjQ&sds=2&rev=83862.2&sendBeacon=true
178.250.0.162200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=ROsmJfv7m2yglmhsRZPS5Qw95vi4saTjRthPbn-lZT0AcZcQD3OahLBs4FtvibEAJYKz8Paz0CGFu_qoFCJYmpUROVs76at66mMkSAdH_abJfJlVnnle0NiVlZm37S_VfdPeRt771WakTzT1AGEU3beFpNEt9YqUe4lZgvq6HOp5m-HcSPVG-CZabk69bnMpp1EGIjrAh_nxrjlxrhhRmf0fCn9L_v_dkBSuWcPscvx0ltNg5p_tj1mTSXuCV28_12LbjQ&sds=2&rev=83862.2&sendBeacon=true
IP 178.250.0.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=ROsmJfv7m2yglmhsRZPS5Qw95vi4saTjRthPbn-lZT0AcZcQD3OahLBs4FtvibEAJYKz8Paz0CGFu_qoFCJYmpUROVs76at66mMkSAdH_abJfJlVnnle0NiVlZm37S_VfdPeRt771WakTzT1AGEU3beFpNEt9YqUe4lZgvq6HOp5m-HcSPVG-CZabk69bnMpp1EGIjrAh_nxrjlxrhhRmf0fCn9L_v_dkBSuWcPscvx0ltNg5p_tj1mTSXuCV28_12LbjQ&sds=2&rev=83862.2&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Dec 2022 16:20:19 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=K3MkV_v7m2yglmhsyOMUWoE911GfUMQHcLaLCwG71tBYLDr9EZ7IPMSIwgTy_4FF0gRQv_MmI69Mzf16o8EVdaiw8CmGHar_SnU8aNxazIwDw59kBsm_6jyjlI6fTz4RW7ggHjjnJ34eH1qxn2GjpmLvgpEYPqH5I7viGtkiYnZ6NBNdeD4zux3jthgzlIixgNM-zBTmqWxRV2qp0n1c8EiYQJMuk5uD7c8NVh1Ml28jUfF1HqebyMtCFv4uXR0m_ak5IA&sds=2&rev=83862.2&sendBeacon=true
178.250.0.162200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=K3MkV_v7m2yglmhsyOMUWoE911GfUMQHcLaLCwG71tBYLDr9EZ7IPMSIwgTy_4FF0gRQv_MmI69Mzf16o8EVdaiw8CmGHar_SnU8aNxazIwDw59kBsm_6jyjlI6fTz4RW7ggHjjnJ34eH1qxn2GjpmLvgpEYPqH5I7viGtkiYnZ6NBNdeD4zux3jthgzlIixgNM-zBTmqWxRV2qp0n1c8EiYQJMuk5uD7c8NVh1Ml28jUfF1HqebyMtCFv4uXR0m_ak5IA&sds=2&rev=83862.2&sendBeacon=true
IP 178.250.0.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=K3MkV_v7m2yglmhsyOMUWoE911GfUMQHcLaLCwG71tBYLDr9EZ7IPMSIwgTy_4FF0gRQv_MmI69Mzf16o8EVdaiw8CmGHar_SnU8aNxazIwDw59kBsm_6jyjlI6fTz4RW7ggHjjnJ34eH1qxn2GjpmLvgpEYPqH5I7viGtkiYnZ6NBNdeD4zux3jthgzlIixgNM-zBTmqWxRV2qp0n1c8EiYQJMuk5uD7c8NVh1Ml28jUfF1HqebyMtCFv4uXR0m_ak5IA&sds=2&rev=83862.2&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 16:20:19 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=03eo-vv7m2yglmhskjIp5udyLE-dCNb1rhWyPtGe38XFAnZ7eAWaRm4_VHeYqwnADxmIytlWPaFSZlG9xy4rjLKmaaZXlw9ZpKoYY0wySu4uYGav9ruLMx0OsmAO_Gk7jlFro-bxtDO0OSKv9GBeT430yBbtJ6pXTqOerVApQ-_w-qVj8L0ZWC68H5l8EwbW8o_Go6Le2ss07c4GFCYbcowjAV_7NDLBfxNgiIr_n1cUOQqcCDV4ROUT5xRkWC2PNJ_zRg&sds=2&rev=83862.2&sendBeacon=true
178.250.0.162200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=03eo-vv7m2yglmhskjIp5udyLE-dCNb1rhWyPtGe38XFAnZ7eAWaRm4_VHeYqwnADxmIytlWPaFSZlG9xy4rjLKmaaZXlw9ZpKoYY0wySu4uYGav9ruLMx0OsmAO_Gk7jlFro-bxtDO0OSKv9GBeT430yBbtJ6pXTqOerVApQ-_w-qVj8L0ZWC68H5l8EwbW8o_Go6Le2ss07c4GFCYbcowjAV_7NDLBfxNgiIr_n1cUOQqcCDV4ROUT5xRkWC2PNJ_zRg&sds=2&rev=83862.2&sendBeacon=true
IP 178.250.0.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=03eo-vv7m2yglmhskjIp5udyLE-dCNb1rhWyPtGe38XFAnZ7eAWaRm4_VHeYqwnADxmIytlWPaFSZlG9xy4rjLKmaaZXlw9ZpKoYY0wySu4uYGav9ruLMx0OsmAO_Gk7jlFro-bxtDO0OSKv9GBeT430yBbtJ6pXTqOerVApQ-_w-qVj8L0ZWC68H5l8EwbW8o_Go6Le2ss07c4GFCYbcowjAV_7NDLBfxNgiIr_n1cUOQqcCDV4ROUT5xRkWC2PNJ_zRg&sds=2&rev=83862.2&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 16:20:19 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
lh3.googleusercontent.com/blogger_img_proxy/ANbyha0rCkbtiJY8lX4gJNhMI03a9Ndv5yjy7YcbWkcj1epsYBjfoAkJJcLqWfLmmzw4Sd56crwEcXfb36emvC7szlmBFpcHmrJLyaarGTOMDdLPvUYNpApffwA=w72-h72-p-k-no-nu
142.250.74.97200 OK 4.3 kB URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ANbyha0rCkbtiJY8lX4gJNhMI03a9Ndv5yjy7YcbWkcj1epsYBjfoAkJJcLqWfLmmzw4Sd56crwEcXfb36emvC7szlmBFpcHmrJLyaarGTOMDdLPvUYNpApffwA=w72-h72-p-k-no-nu
IP 142.250.74.97:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 72x72, components 3\012- data
Hash 6ef787d9b5859c19fd5e49b73e1af609
a65e2ecd64872e228b29749b9ed89b7cc6c3aa58
210c7174f339483962abefd56345c3d0211fdd29fa8c1d4592c509312fc8ae81
GET /blogger_img_proxy/ANbyha0rCkbtiJY8lX4gJNhMI03a9Ndv5yjy7YcbWkcj1epsYBjfoAkJJcLqWfLmmzw4Sd56crwEcXfb36emvC7szlmBFpcHmrJLyaarGTOMDdLPvUYNpApffwA=w72-h72-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://alfabetizacaoecia.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Fri, 09 Dec 2022 16:20:21 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Thu, 08 Dec 2022 16:20:21 GMT
server: fife
content-length: 4273
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=ROsmJfv7m2yglmhsRZPS5Qw95vi4saTjRthPbn-lZT0AcZcQD3OahLBs4FtvibEAJYKz8Paz0CGFu_qoFCJYmpUROVs76at66mMkSAdH_abJfJlVnnle0NiVlZm37S_VfdPeRt771WakTzT1AGEU3beFpNEt9YqUe4lZgvq6HOp5m-HcSPVG-CZabk69bnMpp1EGIjrAh_nxrjlxrhhRmf0fCn9L_v_dkBSuWcPscvx0ltNg5p_tj1mTSXuCV28_12LbjQ&sds=2&rev=83862.2&sendBeacon=true
178.250.0.162200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=ROsmJfv7m2yglmhsRZPS5Qw95vi4saTjRthPbn-lZT0AcZcQD3OahLBs4FtvibEAJYKz8Paz0CGFu_qoFCJYmpUROVs76at66mMkSAdH_abJfJlVnnle0NiVlZm37S_VfdPeRt771WakTzT1AGEU3beFpNEt9YqUe4lZgvq6HOp5m-HcSPVG-CZabk69bnMpp1EGIjrAh_nxrjlxrhhRmf0fCn9L_v_dkBSuWcPscvx0ltNg5p_tj1mTSXuCV28_12LbjQ&sds=2&rev=83862.2&sendBeacon=true
IP 178.250.0.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=ROsmJfv7m2yglmhsRZPS5Qw95vi4saTjRthPbn-lZT0AcZcQD3OahLBs4FtvibEAJYKz8Paz0CGFu_qoFCJYmpUROVs76at66mMkSAdH_abJfJlVnnle0NiVlZm37S_VfdPeRt771WakTzT1AGEU3beFpNEt9YqUe4lZgvq6HOp5m-HcSPVG-CZabk69bnMpp1EGIjrAh_nxrjlxrhhRmf0fCn9L_v_dkBSuWcPscvx0ltNg5p_tj1mTSXuCV28_12LbjQ&sds=2&rev=83862.2&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 16:20:20 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
connect.facebook.net/pt_BR/all.js
31.13.72.12301 Moved Permanently 0 B URL HTTP/1.1 connect.facebook.net/pt_BR/all.js
IP 31.13.72.12:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pt_BR/all.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alfabetizacaoecia.blogspot.com/
HTTP/1.1 301 Moved Permanently
Location: https://connect.facebook.net/pt_BR/all.js
Content-Type: text/plain
Server: proxygen-bolt
Date: Thu, 08 Dec 2022 16:20:23 GMT
Connection: keep-alive
Content-Length: 0
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7d047c6733f9c8d5998cae08d314f084
c23a8dce8a76dd01e22650fc1c19af2bae963008
d13c4f663e010387e21eece93c733faf5f2c3f9ff8ffca7aad99235aa990bea5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1532
Cache-Control: max-age=127418
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 16:20:23 GMT
Etag: "63915785-1d7"
Expires: Sat, 10 Dec 2022 03:44:01 GMT
Last-Modified: Thu, 08 Dec 2022 03:18:29 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/pt_BR/all.js
31.13.72.12200 OK 1.7 kB URL HTTP/2 connect.facebook.net/pt_BR/all.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (1957)
Hash ace2c2b1bb3e26c74716835776e1d1cc
3f563585d96ccedbb4c588f8fde476c5b4e526f2
4fd4f5a373e32705f6fee9b60e1e096b8ce5dcb7de220d38a15d80b7bc9cf982
GET /pt_BR/all.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://alfabetizacaoecia.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 4638b359c80eb79aa2471b2e5f4f3b47
etag: "a7e3f41b3df18edf3330ec8ce48efb77"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Thu, 08 Dec 2022 16:23:09 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: rOLCsbs+JsdHFoNXduHRzA==
x-fb-debug: gZ+kn+ETVyQX5BE8AoNJiRSejCEBgneJ/wgA6QUyop7XTQ1X/KMANPP7qBv0OfXIR4W/a+g4gPMAzi0G2P6qMw==
priority: u=3,i
content-length: 1683
x-fb-trip-id: 1904183273
date: Thu, 08 Dec 2022 16:20:23 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7d047c6733f9c8d5998cae08d314f084
c23a8dce8a76dd01e22650fc1c19af2bae963008
d13c4f663e010387e21eece93c733faf5f2c3f9ff8ffca7aad99235aa990bea5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1532
Cache-Control: max-age=127418
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 16:20:23 GMT
Etag: "63915785-1d7"
Expires: Sat, 10 Dec 2022 03:44:01 GMT
Last-Modified: Thu, 08 Dec 2022 03:18:29 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
alfabetizacaoecia.blogspot.com/favicon.ico
142.250.74.161200 OK 412 B URL HTTP/1.1 alfabetizacaoecia.blogspot.com/favicon.ico
IP 142.250.74.161:0
File type MS Windows icon resource - 2 icons, 32x32, 8 bits/pixel, 16x16, 8 bits/pixel\012- data
Hash 501c61a70f5c41181aa050d9110909ca
5b985d5671a7caf686fdfb1df13488c4407f6c9f
c4aaf001607ee331f6871b4dbbf45942b1e197726714fd106e46d70cc10ee97e
GET /favicon.ico HTTP/1.1
Host: alfabetizacaoecia.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://alfabetizacaoecia.blogspot.com/search/label/ATIVIDADES%20CORPO%20HUMANO
HTTP/1.1 200 OK
Content-Type: image/x-icon; charset=UTF-8
Expires: Thu, 08 Dec 2022 16:20:23 GMT
Date: Thu, 08 Dec 2022 16:20:23 GMT
Cache-Control: private, max-age=86400
Last-Modified: Sat, 26 Nov 2022 09:14:53 GMT
ETag: W/"3189584ab2ad2687fba4a410ca6137aea8297724fb6a1db99b6a707086bffe48"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 412
Server: GSE
connect.facebook.net/pt_BR/all.js?hash=f3b3480f2ead995e94d899998f6011ac
31.13.72.12200 OK 88 kB URL HTTP/2 connect.facebook.net/pt_BR/all.js?hash=f3b3480f2ead995e94d899998f6011ac
IP 31.13.72.12:0
File type ASCII text, with very long lines (18605)
Hash e7bd409a9c06eebf9903e12e055865d2
61d9477f8235e27de5b379cc8bcb8487b0e21304
869afeb9d4aac1eb01b52ff54654b4b7a4dae757f20e9c0d215e65db410793c6
GET /pt_BR/all.js?hash=f3b3480f2ead995e94d899998f6011ac HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://alfabetizacaoecia.blogspot.com
Connection: keep-alive
Referer: http://alfabetizacaoecia.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 7845ef09ffb4bcc9ef5c32d07c74a39b
etag: "7bc85fc78bb3856c8ffa3cafc80c50f8"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Fri, 08 Dec 2023 16:03:09 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: 571AmpwG7r+ZA+EuBVhl0g==
x-fb-debug: JumsL19BxxlLIU3Q1tijn1hxbVftOv/pWzcIdww2DsiRoYJdrVpUS47c3GVWM+gyi2ZW4JC/8hEma+7NRRsOMA==
content-length: 88351
x-fb-trip-id: 1904183273
date: Thu, 08 Dec 2022 16:20:26 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/adchoices_en.svg
178.250.2.130200 OK 0 B URL HTTP/2 static.criteo.net/flash/icon/adchoices_en.svg
IP 178.250.2.130:0
GET /flash/icon/adchoices_en.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:20:19 GMT
content-type: image/svg+xml
last-modified: Tue, 11 Feb 2020 14:27:58 GMT
etag: W/"5e42b9ee-759"
expires: Sun, 03 Dec 2023 16:20:19 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/animejs/animejs.js
178.250.2.130200 OK 0 B URL HTTP/2 static.criteo.net/animejs/animejs.js
IP 178.250.2.130:0
GET /animejs/animejs.js HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:20:19 GMT
content-type: text/javascript
last-modified: Tue, 26 Mar 2019 17:44:11 GMT
etag: W/"5c9a64eb-3181"
expires: Sun, 03 Dec 2023 16:20:19 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ads.eu.criteo.com/delivery/r/afr.php?z=Y5IOwgAN-aoKGL-MAAvf6x8WbRtKqYDMt8PCRQ&u=%7CbIQRyFtN5ueHnu%2FD77LNNZzphP4lgl0U100jivx%2FLWA%3D%7C&c1=jWCgqsKSUoWKRvDssmEQ3dRte9oWhU873PslWXxlgwqBkwvNjl8q6e-4vOkZyr-tuWKbg6CJmKXUnuR2HrQsdA05rfuGSjBWYRgM-kLyjGGKnXwFs8t96j3Cvx_tAymOd2WNXlCRPYzlZU_MA0snXAEuIny-X1s6BouOuPgpy76acr9iZmku8u7sRqevktFP0FeSDAzmzF5HOH6JLXDFfyuPm33K6y7flQxWkG7BPm-FddVz_emi_RrHra30Iwda3ue3YKiq6PRGkk3BLEyeHI5VVbMobTRnkAaNyOgGxIgQnsX95W4QYla5pdbp3kqSfym67Zr4ywWVaEWwidiSYEEiNm4lRpfR5p3KQ76sSP31-q_i8d53Z9aZorVLCVHF6qXep3PGSS7RiqHcl7Y0x2SAT6ks2999TpPICPm0V4-bf9TBbW7q5PvxBq24JLNhX7oxgphaCH0piuhF5qPrr4c58RZPh85PnChLxXSdhVuMkaMCLvodtepTsZEIghAEzSZpvkcIzJ3sdJnptlCR_Fo_LkgMq16QBVuQh1Igmk-dudFr28tWygEZIauHTabg0eJW_YmUvHn1zH1E-jJXng&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCNORmwg6SY6rzN4z_Yuu_r5gMyZ7SsVzFspj3cMCNtwEQASAAYMOEgICYGIIBF2NhLXB1Yi04OTEyODQwODg0MzkxNTkyyAEJqQLd6mv1LaGxPqgDAaoEgAJP0KFf6NapUa_VP0bpKa-ZYPSijAXHIx8EgS3SelAZeun-omzhp0-Mqh2myAj5h5tZPKRa1s5skXinfz9SPhD0Is5czCnPoqLcvpHVGmhD0d4qGkhpOWDleVhj3o5i3JRZBxR7DI4mxBTkqtHIRyTwADdQ1HntMk6-My1SPEICcqsixV1HXDm3SeKJFIV0QnaFgJzweTtbwXI59XT_UsgU8D748FGNjBukGu3E976yhYxSXQPH2xHm6DMCV3I9Hes_war-zzmhLONBkeQfod2ioREzy1mjrmQeLa68EmeMlqS1BIVWVzxUT23bJS7whCAjpm7YbOmOztdqtG_EqDbXgAb67-Ltk6-18FGgBiGoB6a-G6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggPCIDhgHAQATIC6wI6AoBA-gsCCAGADAHQFQGAFwE%26num%3D1%26sig%3DAOD64_3cli9L02FgqoEIiATc0Z2DREuU7A%26client%3Dca-pub-8912840884391592%26adurl%3D
178.250.0.138200 OK 0 B URL HTTP/2 ads.eu.criteo.com/delivery/r/afr.php?z=Y5IOwgAN-aoKGL-MAAvf6x8WbRtKqYDMt8PCRQ&u=%7CbIQRyFtN5ueHnu%2FD77LNNZzphP4lgl0U100jivx%2FLWA%3D%7C&c1=jWCgqsKSUoWKRvDssmEQ3dRte9oWhU873PslWXxlgwqBkwvNjl8q6e-4vOkZyr-tuWKbg6CJmKXUnuR2HrQsdA05rfuGSjBWYRgM-kLyjGGKnXwFs8t96j3Cvx_tAymOd2WNXlCRPYzlZU_MA0snXAEuIny-X1s6BouOuPgpy76acr9iZmku8u7sRqevktFP0FeSDAzmzF5HOH6JLXDFfyuPm33K6y7flQxWkG7BPm-FddVz_emi_RrHra30Iwda3ue3YKiq6PRGkk3BLEyeHI5VVbMobTRnkAaNyOgGxIgQnsX95W4QYla5pdbp3kqSfym67Zr4ywWVaEWwidiSYEEiNm4lRpfR5p3KQ76sSP31-q_i8d53Z9aZorVLCVHF6qXep3PGSS7RiqHcl7Y0x2SAT6ks2999TpPICPm0V4-bf9TBbW7q5PvxBq24JLNhX7oxgphaCH0piuhF5qPrr4c58RZPh85PnChLxXSdhVuMkaMCLvodtepTsZEIghAEzSZpvkcIzJ3sdJnptlCR_Fo_LkgMq16QBVuQh1Igmk-dudFr28tWygEZIauHTabg0eJW_YmUvHn1zH1E-jJXng&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCNORmwg6SY6rzN4z_Yuu_r5gMyZ7SsVzFspj3cMCNtwEQASAAYMOEgICYGIIBF2NhLXB1Yi04OTEyODQwODg0MzkxNTkyyAEJqQLd6mv1LaGxPqgDAaoEgAJP0KFf6NapUa_VP0bpKa-ZYPSijAXHIx8EgS3SelAZeun-omzhp0-Mqh2myAj5h5tZPKRa1s5skXinfz9SPhD0Is5czCnPoqLcvpHVGmhD0d4qGkhpOWDleVhj3o5i3JRZBxR7DI4mxBTkqtHIRyTwADdQ1HntMk6-My1SPEICcqsixV1HXDm3SeKJFIV0QnaFgJzweTtbwXI59XT_UsgU8D748FGNjBukGu3E976yhYxSXQPH2xHm6DMCV3I9Hes_war-zzmhLONBkeQfod2ioREzy1mjrmQeLa68EmeMlqS1BIVWVzxUT23bJS7whCAjpm7YbOmOztdqtG_EqDbXgAb67-Ltk6-18FGgBiGoB6a-G6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggPCIDhgHAQATIC6wI6AoBA-gsCCAGADAHQFQGAFwE%26num%3D1%26sig%3DAOD64_3cli9L02FgqoEIiATc0Z2DREuU7A%26client%3Dca-pub-8912840884391592%26adurl%3D
IP 178.250.0.138:0
GET /delivery/r/afr.php?z=Y5IOwgAN-aoKGL-MAAvf6x8WbRtKqYDMt8PCRQ&u=%7CbIQRyFtN5ueHnu%2FD77LNNZzphP4lgl0U100jivx%2FLWA%3D%7C&c1=jWCgqsKSUoWKRvDssmEQ3dRte9oWhU873PslWXxlgwqBkwvNjl8q6e-4vOkZyr-tuWKbg6CJmKXUnuR2HrQsdA05rfuGSjBWYRgM-kLyjGGKnXwFs8t96j3Cvx_tAymOd2WNXlCRPYzlZU_MA0snXAEuIny-X1s6BouOuPgpy76acr9iZmku8u7sRqevktFP0FeSDAzmzF5HOH6JLXDFfyuPm33K6y7flQxWkG7BPm-FddVz_emi_RrHra30Iwda3ue3YKiq6PRGkk3BLEyeHI5VVbMobTRnkAaNyOgGxIgQnsX95W4QYla5pdbp3kqSfym67Zr4ywWVaEWwidiSYEEiNm4lRpfR5p3KQ76sSP31-q_i8d53Z9aZorVLCVHF6qXep3PGSS7RiqHcl7Y0x2SAT6ks2999TpPICPm0V4-bf9TBbW7q5PvxBq24JLNhX7oxgphaCH0piuhF5qPrr4c58RZPh85PnChLxXSdhVuMkaMCLvodtepTsZEIghAEzSZpvkcIzJ3sdJnptlCR_Fo_LkgMq16QBVuQh1Igmk-dudFr28tWygEZIauHTabg0eJW_YmUvHn1zH1E-jJXng&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCNORmwg6SY6rzN4z_Yuu_r5gMyZ7SsVzFspj3cMCNtwEQASAAYMOEgICYGIIBF2NhLXB1Yi04OTEyODQwODg0MzkxNTkyyAEJqQLd6mv1LaGxPqgDAaoEgAJP0KFf6NapUa_VP0bpKa-ZYPSijAXHIx8EgS3SelAZeun-omzhp0-Mqh2myAj5h5tZPKRa1s5skXinfz9SPhD0Is5czCnPoqLcvpHVGmhD0d4qGkhpOWDleVhj3o5i3JRZBxR7DI4mxBTkqtHIRyTwADdQ1HntMk6-My1SPEICcqsixV1HXDm3SeKJFIV0QnaFgJzweTtbwXI59XT_UsgU8D748FGNjBukGu3E976yhYxSXQPH2xHm6DMCV3I9Hes_war-zzmhLONBkeQfod2ioREzy1mjrmQeLa68EmeMlqS1BIVWVzxUT23bJS7whCAjpm7YbOmOztdqtG_EqDbXgAb67-Ltk6-18FGgBiGoB6a-G6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggPCIDhgHAQATIC6wI6AoBA-gsCCAGADAHQFQGAFwE%26num%3D1%26sig%3DAOD64_3cli9L02FgqoEIiATc0Z2DREuU7A%26client%3Dca-pub-8912840884391592%26adurl%3D HTTP/1.1
Host: ads.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Dec 2022 16:20:18 GMT
content-type: text/html
server: Kestrel
cache-control: private, max-age=0, no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-max-age: 1000
cross-origin-resource-policy: cross-origin
p3p: CP='CUR ADM OUR NOR STA NID'
report-to: {"endpoints":[{"url":"https://csm.eu.criteo.net/heavyad?cppv=3&cpp=03eo-vv7m2yglmhskjIp5udyLE-dCNb1rhWyPtGe38XFAnZ7eAWaRm4_VHeYqwnADxmIytlWPaFSZlG9xy4rjLKmaaZXlw9ZpKoYY0wySu4uYGav9ruLMx0OsmAO_Gk7jlFro-bxtDO0OSKv9GBeT430yBbtJ6pXTqOerVApQ-_w-qVj8L0ZWC68H5l8EwbW8o_Go6Le2ss07c4GFCYbcowjAV_7NDLBfxNgiIr_n1cUOQqcCDV4ROUT5xRkWC2PNJ_zRg"}], "max_age": 86400}
link: <pix.eu.criteo.net>; rel=preconnect; crossorigin, <static.criteo.net>; rel=preconnect; crossorigin
server-processing-duration-in-ticks: 136452062
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:400,700&subset=latin,cyrillic,latin-ext,cyrillic-ext,vietnamese,greek-ext,greek
142.250.74.74200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:400,700&subset=latin,cyrillic,latin-ext,cyrillic-ext,vietnamese,greek-ext,greek
IP 142.250.74.74:0
GET /css?family=Open+Sans:400,700&subset=latin,cyrillic,latin-ext,cyrillic-ext,vietnamese,greek-ext,greek HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 08 Dec 2022 16:20:19 GMT
date: Thu, 08 Dec 2022 16:20:19 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cat.fr.eu.criteo.com/delivery/lg.php?cppv=3&cpp=vEKc5TJwH2wcgyAhk9jTPTiOVIQq7CGxAIUq5S8XgT8KbwmeAkOgHZNjhANR6XLu9cCpUNOjcR5gQqEFV0xJsuQTalLYOZNnITFR-MBr5hiHGvcsBt6slMCng1C8t4Kv-MJEIZs8sA1K-K5U0cOjVCQzE42b2a8HSasq296uv7RR4yWf6do5Q2IOg4IqVr59nzUlK-tGBaEzikBC_ac8u5PaGUsT8uV0vt8vld48qxLZ6YfKLSYTEqnvXEjIjuBAn8gcAgbvHAULJ3jeCW75Q1hrG697NITMhSSWGbxRLvHpcud9QGuw7VQzw9vgJpD5ASNOtWH13Hbjuo366BLcI6Y2xNTqN1ooF6DPDulIJBDgoOvnEhUuxPxKYwlTrFyJxrMCBUN9g4zcLbdFWJpL_Srys9IIvzu217W40RNSZHVKv7N8KvoDJY8Zid_4OMOmM8dD4g
178.250.0.160200 OK 0 B URL HTTP/2 cat.fr.eu.criteo.com/delivery/lg.php?cppv=3&cpp=vEKc5TJwH2wcgyAhk9jTPTiOVIQq7CGxAIUq5S8XgT8KbwmeAkOgHZNjhANR6XLu9cCpUNOjcR5gQqEFV0xJsuQTalLYOZNnITFR-MBr5hiHGvcsBt6slMCng1C8t4Kv-MJEIZs8sA1K-K5U0cOjVCQzE42b2a8HSasq296uv7RR4yWf6do5Q2IOg4IqVr59nzUlK-tGBaEzikBC_ac8u5PaGUsT8uV0vt8vld48qxLZ6YfKLSYTEqnvXEjIjuBAn8gcAgbvHAULJ3jeCW75Q1hrG697NITMhSSWGbxRLvHpcud9QGuw7VQzw9vgJpD5ASNOtWH13Hbjuo366BLcI6Y2xNTqN1ooF6DPDulIJBDgoOvnEhUuxPxKYwlTrFyJxrMCBUN9g4zcLbdFWJpL_Srys9IIvzu217W40RNSZHVKv7N8KvoDJY8Zid_4OMOmM8dD4g
IP 178.250.0.160:0
GET /delivery/lg.php?cppv=3&cpp=vEKc5TJwH2wcgyAhk9jTPTiOVIQq7CGxAIUq5S8XgT8KbwmeAkOgHZNjhANR6XLu9cCpUNOjcR5gQqEFV0xJsuQTalLYOZNnITFR-MBr5hiHGvcsBt6slMCng1C8t4Kv-MJEIZs8sA1K-K5U0cOjVCQzE42b2a8HSasq296uv7RR4yWf6do5Q2IOg4IqVr59nzUlK-tGBaEzikBC_ac8u5PaGUsT8uV0vt8vld48qxLZ6YfKLSYTEqnvXEjIjuBAn8gcAgbvHAULJ3jeCW75Q1hrG697NITMhSSWGbxRLvHpcud9QGuw7VQzw9vgJpD5ASNOtWH13Hbjuo366BLcI6Y2xNTqN1ooF6DPDulIJBDgoOvnEhUuxPxKYwlTrFyJxrMCBUN9g4zcLbdFWJpL_Srys9IIvzu217W40RNSZHVKv7N8KvoDJY8Zid_4OMOmM8dD4g HTTP/1.1
Host: cat.fr.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 16:20:19 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
server-processing-duration-in-ticks: 2642888
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
cat.fr.eu.criteo.com/delivery/lg.php?cppv=3&cpp=XfZaiCuLxbOzHLJ8Iptuoa5F_GQjTQACVVA-64fbtosFHgtx4JXWSPgW070moLmQ9fwbAFDW6dOyumHbQYJoeMllS0jqZ4g5ocVUBaED2i-40qcuXVAxgnqq6D-REJJ_3HtdpPwGhlBwDfY00BbGuKc_S2DoudWis4pr1hw-GscwiMDlR2-gEKpsMU0Z13kNnQy1SV3Rudpg_fmSn99FpICoxT0kiRh8M3VGB3AcZBCWIg_1hYCfxbJboKFtUec7eBGIdbmJAjTulKIf78XvWf6mEKZkAU7R16WMzKAChS5NGc0vaQeppuDWclem_aiw9-IQK8UgXM1P0tHtnZrwkBQjzqq88MSh2B_AuQLu0EnEIWNeUYhBdwt-mdNkZEsvDd9DTxA7Wht6DX79d-fSHpboVFnl7Bf4fUMc_wlZk6V2YLVVhUvFpTWXK6L3VbhD37HAcA
178.250.0.160200 OK 0 B URL HTTP/2 cat.fr.eu.criteo.com/delivery/lg.php?cppv=3&cpp=XfZaiCuLxbOzHLJ8Iptuoa5F_GQjTQACVVA-64fbtosFHgtx4JXWSPgW070moLmQ9fwbAFDW6dOyumHbQYJoeMllS0jqZ4g5ocVUBaED2i-40qcuXVAxgnqq6D-REJJ_3HtdpPwGhlBwDfY00BbGuKc_S2DoudWis4pr1hw-GscwiMDlR2-gEKpsMU0Z13kNnQy1SV3Rudpg_fmSn99FpICoxT0kiRh8M3VGB3AcZBCWIg_1hYCfxbJboKFtUec7eBGIdbmJAjTulKIf78XvWf6mEKZkAU7R16WMzKAChS5NGc0vaQeppuDWclem_aiw9-IQK8UgXM1P0tHtnZrwkBQjzqq88MSh2B_AuQLu0EnEIWNeUYhBdwt-mdNkZEsvDd9DTxA7Wht6DX79d-fSHpboVFnl7Bf4fUMc_wlZk6V2YLVVhUvFpTWXK6L3VbhD37HAcA
IP 178.250.0.160:0
GET /delivery/lg.php?cppv=3&cpp=XfZaiCuLxbOzHLJ8Iptuoa5F_GQjTQACVVA-64fbtosFHgtx4JXWSPgW070moLmQ9fwbAFDW6dOyumHbQYJoeMllS0jqZ4g5ocVUBaED2i-40qcuXVAxgnqq6D-REJJ_3HtdpPwGhlBwDfY00BbGuKc_S2DoudWis4pr1hw-GscwiMDlR2-gEKpsMU0Z13kNnQy1SV3Rudpg_fmSn99FpICoxT0kiRh8M3VGB3AcZBCWIg_1hYCfxbJboKFtUec7eBGIdbmJAjTulKIf78XvWf6mEKZkAU7R16WMzKAChS5NGc0vaQeppuDWclem_aiw9-IQK8UgXM1P0tHtnZrwkBQjzqq88MSh2B_AuQLu0EnEIWNeUYhBdwt-mdNkZEsvDd9DTxA7Wht6DX79d-fSHpboVFnl7Bf4fUMc_wlZk6V2YLVVhUvFpTWXK6L3VbhD37HAcA HTTP/1.1
Host: cat.fr.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Thu, 08 Dec 2022 16:20:19 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
server-processing-duration-in-ticks: 3669261
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/privacy.svg
178.250.2.130200 OK 0 B URL HTTP/2 static.criteo.net/flash/icon/privacy.svg
IP 178.250.2.130:0
GET /flash/icon/privacy.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:20:19 GMT
content-type: image/svg+xml
last-modified: Wed, 19 Feb 2020 10:57:21 GMT
etag: W/"5e4d1491-646"
expires: Sun, 03 Dec 2023 16:20:19 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/privacy_small.svg
178.250.2.130200 OK 0 B URL HTTP/2 static.criteo.net/flash/icon/privacy_small.svg
IP 178.250.2.130:0
GET /flash/icon/privacy_small.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 16:20:19 GMT
content-type: image/svg+xml
last-modified: Tue, 11 Feb 2020 14:30:28 GMT
etag: W/"5e42ba84-6aa"
expires: Sun, 03 Dec 2023 16:20:19 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ads.eu.criteo.com/delivery/r/afr.php?z=Y5IOwgAOEVYKGOCMAAO-7uWBiFcg_JJz5KRuQA&u=%7CbIQRyFtN5ueyP13%2BEKZxxeB8JQb2MrMLiefvMAEQ7Xw%3D%7C&c1=jWCgqsKSUoWKRvDssmEQ3dRte9oWhU873PslWXxlgwqBkwvNjl8q6e-4vOkZyr-tuWKbg6CJmKXUnuR2HrQsdA05rfuGSjBWYRgM-kLyjGGKnXwFs8t96jctCfk6zjPdWvy1dMcaZAXHv2Q_YmXHbSMu71H0ymFw9HBtMDq4HJcxWVO4hYWqnkdbPlA55HqGtwpQNjhLbu6C__hBWhDXfaPHr-S66x7Hy4cqyPZQo5Zy6czO4Cx0fuSOUkkJnIg018MZY3FZ_q3KfJi6DrzPMoKPFaRNPAaMXjZv9ITDNNDzvZDYu-GxA_R6zD7YjwqCpcrrv5-XAzHZSe2D7tuqwTrfkA5I84ovXiOirgU3QAw2zzM16O9iczdbNlZbj8ziv4T9Pmtcd9c93_cLLL361RhkZOCOt7vr5BIZdKCNcir69cPTSSytZq_IlqnExTdzqFgZ4JZwbbgDTOKdLCYqWKl-kmG_9UnJf7QcaINmU4ENe4U4GsVhejhjPaeRS8P7lgU2hmcwx20TP5JP9OOQKniaXOt75M9ZQXHH0wQbgzHBKAb0W-0UetUySiy3xnltXfW20jkvi2ECZ9W6_dytfA&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DC_ZPpwg6SY9aiOIzBY-79jvAFyZ7SsVy96ZX3cMCNtwEQASAAYMOEgICYGIIBF2NhLXB1Yi04OTEyODQwODg0MzkxNTkyyAEJqQLd6mv1LaGxPqgDAaoEgAJP0CfYSOkIiHijgMVvbYELIQORiJ-6LXwH-Bx2MeauHpYBv4dZKGuXC9h9A9f50e4h_jqe-wppzEBAKGfDfskgoM6_7ty36kkmbIGS_UVLI5naPwmlbnwFZIdJtEBDC12DXNxnmX02LqCPfbJrye8A6s9Dhx8UCqDew8_vx3PY0OGEXgzLtmgxj9S2HdJDSYf7oSZnp-MH7WZuVg8kQkZhpqY7AKF7EQZxEsJh0bBkN9oiUvEgZR4sriHzDU_KD1ahNx6YI4OTND6x-PCBWVxVXl2TFme1LIjUnamZVqW0qK-jggN-Q_F8pyjYEz1pgEBMP6cUWxkB0BcoIWWB3l0WgAb67-Ltk6-18FGgBiGoB6a-G6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggPCIDhgHAQATIC6wI6AoBA-gsCCAGADAHQFQGAFwE%26num%3D1%26sig%3DAOD64_3Us4oqDKE_j_9mdntOqN2ELH3xCA%26client%3Dca-pub-8912840884391592%26adurl%3D
178.250.0.138200 OK 0 B URL HTTP/2 ads.eu.criteo.com/delivery/r/afr.php?z=Y5IOwgAOEVYKGOCMAAO-7uWBiFcg_JJz5KRuQA&u=%7CbIQRyFtN5ueyP13%2BEKZxxeB8JQb2MrMLiefvMAEQ7Xw%3D%7C&c1=jWCgqsKSUoWKRvDssmEQ3dRte9oWhU873PslWXxlgwqBkwvNjl8q6e-4vOkZyr-tuWKbg6CJmKXUnuR2HrQsdA05rfuGSjBWYRgM-kLyjGGKnXwFs8t96jctCfk6zjPdWvy1dMcaZAXHv2Q_YmXHbSMu71H0ymFw9HBtMDq4HJcxWVO4hYWqnkdbPlA55HqGtwpQNjhLbu6C__hBWhDXfaPHr-S66x7Hy4cqyPZQo5Zy6czO4Cx0fuSOUkkJnIg018MZY3FZ_q3KfJi6DrzPMoKPFaRNPAaMXjZv9ITDNNDzvZDYu-GxA_R6zD7YjwqCpcrrv5-XAzHZSe2D7tuqwTrfkA5I84ovXiOirgU3QAw2zzM16O9iczdbNlZbj8ziv4T9Pmtcd9c93_cLLL361RhkZOCOt7vr5BIZdKCNcir69cPTSSytZq_IlqnExTdzqFgZ4JZwbbgDTOKdLCYqWKl-kmG_9UnJf7QcaINmU4ENe4U4GsVhejhjPaeRS8P7lgU2hmcwx20TP5JP9OOQKniaXOt75M9ZQXHH0wQbgzHBKAb0W-0UetUySiy3xnltXfW20jkvi2ECZ9W6_dytfA&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DC_ZPpwg6SY9aiOIzBY-79jvAFyZ7SsVy96ZX3cMCNtwEQASAAYMOEgICYGIIBF2NhLXB1Yi04OTEyODQwODg0MzkxNTkyyAEJqQLd6mv1LaGxPqgDAaoEgAJP0CfYSOkIiHijgMVvbYELIQORiJ-6LXwH-Bx2MeauHpYBv4dZKGuXC9h9A9f50e4h_jqe-wppzEBAKGfDfskgoM6_7ty36kkmbIGS_UVLI5naPwmlbnwFZIdJtEBDC12DXNxnmX02LqCPfbJrye8A6s9Dhx8UCqDew8_vx3PY0OGEXgzLtmgxj9S2HdJDSYf7oSZnp-MH7WZuVg8kQkZhpqY7AKF7EQZxEsJh0bBkN9oiUvEgZR4sriHzDU_KD1ahNx6YI4OTND6x-PCBWVxVXl2TFme1LIjUnamZVqW0qK-jggN-Q_F8pyjYEz1pgEBMP6cUWxkB0BcoIWWB3l0WgAb67-Ltk6-18FGgBiGoB6a-G6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggPCIDhgHAQATIC6wI6AoBA-gsCCAGADAHQFQGAFwE%26num%3D1%26sig%3DAOD64_3Us4oqDKE_j_9mdntOqN2ELH3xCA%26client%3Dca-pub-8912840884391592%26adurl%3D
IP 178.250.0.138:0
GET /delivery/r/afr.php?z=Y5IOwgAOEVYKGOCMAAO-7uWBiFcg_JJz5KRuQA&u=%7CbIQRyFtN5ueyP13%2BEKZxxeB8JQb2MrMLiefvMAEQ7Xw%3D%7C&c1=jWCgqsKSUoWKRvDssmEQ3dRte9oWhU873PslWXxlgwqBkwvNjl8q6e-4vOkZyr-tuWKbg6CJmKXUnuR2HrQsdA05rfuGSjBWYRgM-kLyjGGKnXwFs8t96jctCfk6zjPdWvy1dMcaZAXHv2Q_YmXHbSMu71H0ymFw9HBtMDq4HJcxWVO4hYWqnkdbPlA55HqGtwpQNjhLbu6C__hBWhDXfaPHr-S66x7Hy4cqyPZQo5Zy6czO4Cx0fuSOUkkJnIg018MZY3FZ_q3KfJi6DrzPMoKPFaRNPAaMXjZv9ITDNNDzvZDYu-GxA_R6zD7YjwqCpcrrv5-XAzHZSe2D7tuqwTrfkA5I84ovXiOirgU3QAw2zzM16O9iczdbNlZbj8ziv4T9Pmtcd9c93_cLLL361RhkZOCOt7vr5BIZdKCNcir69cPTSSytZq_IlqnExTdzqFgZ4JZwbbgDTOKdLCYqWKl-kmG_9UnJf7QcaINmU4ENe4U4GsVhejhjPaeRS8P7lgU2hmcwx20TP5JP9OOQKniaXOt75M9ZQXHH0wQbgzHBKAb0W-0UetUySiy3xnltXfW20jkvi2ECZ9W6_dytfA&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DC_ZPpwg6SY9aiOIzBY-79jvAFyZ7SsVy96ZX3cMCNtwEQASAAYMOEgICYGIIBF2NhLXB1Yi04OTEyODQwODg0MzkxNTkyyAEJqQLd6mv1LaGxPqgDAaoEgAJP0CfYSOkIiHijgMVvbYELIQORiJ-6LXwH-Bx2MeauHpYBv4dZKGuXC9h9A9f50e4h_jqe-wppzEBAKGfDfskgoM6_7ty36kkmbIGS_UVLI5naPwmlbnwFZIdJtEBDC12DXNxnmX02LqCPfbJrye8A6s9Dhx8UCqDew8_vx3PY0OGEXgzLtmgxj9S2HdJDSYf7oSZnp-MH7WZuVg8kQkZhpqY7AKF7EQZxEsJh0bBkN9oiUvEgZR4sriHzDU_KD1ahNx6YI4OTND6x-PCBWVxVXl2TFme1LIjUnamZVqW0qK-jggN-Q_F8pyjYEz1pgEBMP6cUWxkB0BcoIWWB3l0WgAb67-Ltk6-18FGgBiGoB6a-G6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggPCIDhgHAQATIC6wI6AoBA-gsCCAGADAHQFQGAFwE%26num%3D1%26sig%3DAOD64_3Us4oqDKE_j_9mdntOqN2ELH3xCA%26client%3Dca-pub-8912840884391592%26adurl%3D HTTP/1.1
Host: ads.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Dec 2022 16:20:18 GMT
content-type: text/html
server: Kestrel
cache-control: private, max-age=0, no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-max-age: 1000
cross-origin-resource-policy: cross-origin
p3p: CP='CUR ADM OUR NOR STA NID'
report-to: {"endpoints":[{"url":"https://csm.eu.criteo.net/heavyad?cppv=3&cpp=K3MkV_v7m2yglmhsyOMUWoE911GfUMQHcLaLCwG71tBYLDr9EZ7IPMSIwgTy_4FF0gRQv_MmI69Mzf16o8EVdaiw8CmGHar_SnU8aNxazIwDw59kBsm_6jyjlI6fTz4RW7ggHjjnJ34eH1qxn2GjpmLvgpEYPqH5I7viGtkiYnZ6NBNdeD4zux3jthgzlIixgNM-zBTmqWxRV2qp0n1c8EiYQJMuk5uD7c8NVh1Ml28jUfF1HqebyMtCFv4uXR0m_ak5IA"}], "max_age": 86400}
link: <pix.eu.criteo.net>; rel=preconnect; crossorigin, <static.criteo.net>; rel=preconnect; crossorigin
server-processing-duration-in-ticks: 119735443
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
cat.fr.eu.criteo.com/delivery/lg.php?cppv=3&cpp=QXa5ezJwH2wcgyAhk9jTPTiOVIQf1EllRZK2TRKv5XMV59VBwMlGOAWvoIK4m6rNHWhcH4S1H8w_5Dl27eT_frCkjPuUmZiJrk702u8uF1WlyN-EmNsjDJ_G-X3L_x6sE3flz32dKkmrndUBgHxzMsabnUghiEr0zXneN2ExpYQJuBmBWpwcCb6eEc1DFfE87HUJ1sz4bA8Vold0l7aIjil5pf69Wd4ikQvkY8HcRlOCAvgh6MqvoQEpYDNAEdk6zw5vJwpFcIpapuv_BEfk-ZCk1HcGXE3R4bJC8Hplbv6SyEyvCRKUk4oaq_AYZJ4qq7HQFryTB985eiUPdTEpcsGcxRBwgRwylcxAtAxLCi0AuoFHFO4dqfv4tk_c2uAA9fMlWv33rcgenouC364xzyHslqgIw5QzHquayH-i4V_ZGNj-sj3Gt3fUSCTPMH6IQmXhnA
178.250.0.160200 OK 0 B URL HTTP/2 cat.fr.eu.criteo.com/delivery/lg.php?cppv=3&cpp=QXa5ezJwH2wcgyAhk9jTPTiOVIQf1EllRZK2TRKv5XMV59VBwMlGOAWvoIK4m6rNHWhcH4S1H8w_5Dl27eT_frCkjPuUmZiJrk702u8uF1WlyN-EmNsjDJ_G-X3L_x6sE3flz32dKkmrndUBgHxzMsabnUghiEr0zXneN2ExpYQJuBmBWpwcCb6eEc1DFfE87HUJ1sz4bA8Vold0l7aIjil5pf69Wd4ikQvkY8HcRlOCAvgh6MqvoQEpYDNAEdk6zw5vJwpFcIpapuv_BEfk-ZCk1HcGXE3R4bJC8Hplbv6SyEyvCRKUk4oaq_AYZJ4qq7HQFryTB985eiUPdTEpcsGcxRBwgRwylcxAtAxLCi0AuoFHFO4dqfv4tk_c2uAA9fMlWv33rcgenouC364xzyHslqgIw5QzHquayH-i4V_ZGNj-sj3Gt3fUSCTPMH6IQmXhnA
IP 178.250.0.160:0
GET /delivery/lg.php?cppv=3&cpp=QXa5ezJwH2wcgyAhk9jTPTiOVIQf1EllRZK2TRKv5XMV59VBwMlGOAWvoIK4m6rNHWhcH4S1H8w_5Dl27eT_frCkjPuUmZiJrk702u8uF1WlyN-EmNsjDJ_G-X3L_x6sE3flz32dKkmrndUBgHxzMsabnUghiEr0zXneN2ExpYQJuBmBWpwcCb6eEc1DFfE87HUJ1sz4bA8Vold0l7aIjil5pf69Wd4ikQvkY8HcRlOCAvgh6MqvoQEpYDNAEdk6zw5vJwpFcIpapuv_BEfk-ZCk1HcGXE3R4bJC8Hplbv6SyEyvCRKUk4oaq_AYZJ4qq7HQFryTB985eiUPdTEpcsGcxRBwgRwylcxAtAxLCi0AuoFHFO4dqfv4tk_c2uAA9fMlWv33rcgenouC364xzyHslqgIw5QzHquayH-i4V_ZGNj-sj3Gt3fUSCTPMH6IQmXhnA HTTP/1.1
Host: cat.fr.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 16:20:19 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
server-processing-duration-in-ticks: 2784336
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2